last executing test programs:

1m59.945090558s ago: executing program 4 (id=1109):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$wireguard(0x0, 0xffffffffffffffff)
socket$can_bcm(0x1d, 0x2, 0x2)
recvmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
io_uring_setup(0x0, &(0x7f0000000100))
socket$inet_udp(0x2, 0x2, 0x0)
r0 = io_uring_setup(0x410f, &(0x7f0000000200))
io_uring_register$IORING_REGISTER_EVENTFD(0xffffffffffffffff, 0x4, &(0x7f0000000000), 0x1)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS2(r0, 0xf, &(0x7f0000001580)={0x3, 0x0, 0x0, &(0x7f00000014c0)=[{0x0}, {0x0}, {&(0x7f0000000280)=""/4096, 0x1000}], &(0x7f0000001540)=[0x0, 0x0, 0x4]}, 0x20)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fsetxattr$security_capability(r1, &(0x7f00000001c0), &(0x7f0000000200)=@v1={0x1000000, [{0x5}]}, 0xc, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r1, r2, 0x2, 0x2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000180)={r3, r1, 0x2, 0x0, @void}, 0x10)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r4, 0x107, 0x14, &(0x7f0000000080)=0xfff, 0x4)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000))

1m58.946952874s ago: executing program 4 (id=1117):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
r3 = socket$inet(0x2, 0x3, 0x1)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x0, @dev}, 0x10)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_emit_ethernet(0x82, &(0x7f00000003c0)=ANY=[@ANYBLOB="ffffffffffff0000000000000800450000740000000000019078ac1e0001ca1414aa0300907803000000460100000000000000010000ffffffffe000000244440001ac1e0001000000000000000000000000ffffffff00000000ac1e000100000000e00000020000000000000000a10000000000000000000065edd5dd6fff5a884500e0000002000040aac7a390995aca67dac4c486"], 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x0, 0x4d53}, 0x48)
pipe2$9p(&(0x7f0000001900)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
r8 = dup(r7)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r6}, 0x2c, {'wfdno', 0x3d, r8}, 0x2c, {[], [], 0x6b}})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r9, 0x8924, &(0x7f0000000000)={'veth0_vlan\x00', @random="0100002010ff"})
brk(0x55555ede6001)
socket(0x1, 0x2, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000280)=ANY=[@ANYRES32=r4], &(0x7f00000001c0)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x8}, 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, r1}, 0x90)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r11, r10, 0x26}, 0x10)

1m58.242891291s ago: executing program 4 (id=1120):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x6, 0x20, 0x0, 0x400}, {0x3, 0x48, 0x7}]})
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000400), &(0x7f0000000040), &(0x7f00000003c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xffffffffffffffca, &(0x7f0000000040)=0x10001)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r3 = socket(0x8000000010, 0x2, 0x0)
write(r3, &(0x7f00000002c0), 0x0)
socket(0x840000000002, 0x3, 0x100)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
semop(0x0, &(0x7f0000000240)=[{0x2, 0x7fff}], 0x1)
syz_open_procfs(0x0, &(0x7f0000000300)='fd\x00')
getdents(r2, &(0x7f0000000080)=""/61, 0x3d)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b8000000190001000000000000000000dc020078000000000000000000000000ff02000000000000e26ea7250000000100000000000000000a"], 0xb8}}, 0x0)
sendmsg$nl_xfrm(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB="650100001b"], 0x188}}, 0x0)
semop(0x0, &(0x7f0000001400), 0x2aaaaaaaaaaaabab)
sendmsg$key(0xffffffffffffffff, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x2, 0xd, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, [@sadb_x_policy={0x8, 0x12, 0x2, 0x2, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@dev}}, @sadb_address={0x5, 0x0, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @empty}}, @sadb_x_sec_ctx={0x1}]}, 0x80}}, 0x0)
sched_getattr(r1, &(0x7f00000000c0)={0x38}, 0x38, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x4, r1, 0x0, &(0x7f0000000080))
r5 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r6=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000000)={r6}, 0x10)

1m23.452643264s ago: executing program 4 (id=1120):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x6, 0x20, 0x0, 0x400}, {0x3, 0x48, 0x7}]})
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000400), &(0x7f0000000040), &(0x7f00000003c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xffffffffffffffca, &(0x7f0000000040)=0x10001)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r3 = socket(0x8000000010, 0x2, 0x0)
write(r3, &(0x7f00000002c0), 0x0)
socket(0x840000000002, 0x3, 0x100)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
semop(0x0, &(0x7f0000000240)=[{0x2, 0x7fff}], 0x1)
syz_open_procfs(0x0, &(0x7f0000000300)='fd\x00')
getdents(r2, &(0x7f0000000080)=""/61, 0x3d)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b8000000190001000000000000000000dc020078000000000000000000000000ff02000000000000e26ea7250000000100000000000000000a"], 0xb8}}, 0x0)
sendmsg$nl_xfrm(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB="650100001b"], 0x188}}, 0x0)
semop(0x0, &(0x7f0000001400), 0x2aaaaaaaaaaaabab)
sendmsg$key(0xffffffffffffffff, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x2, 0xd, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, [@sadb_x_policy={0x8, 0x12, 0x2, 0x2, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@dev}}, @sadb_address={0x5, 0x0, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @empty}}, @sadb_x_sec_ctx={0x1}]}, 0x80}}, 0x0)
sched_getattr(r1, &(0x7f00000000c0)={0x38}, 0x38, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x4, r1, 0x0, &(0x7f0000000080))
r5 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r6=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000000)={r6}, 0x10)

33.129518282s ago: executing program 4 (id=1120):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x6, 0x20, 0x0, 0x400}, {0x3, 0x48, 0x7}]})
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000400), &(0x7f0000000040), &(0x7f00000003c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xffffffffffffffca, &(0x7f0000000040)=0x10001)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r3 = socket(0x8000000010, 0x2, 0x0)
write(r3, &(0x7f00000002c0), 0x0)
socket(0x840000000002, 0x3, 0x100)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
semop(0x0, &(0x7f0000000240)=[{0x2, 0x7fff}], 0x1)
syz_open_procfs(0x0, &(0x7f0000000300)='fd\x00')
getdents(r2, &(0x7f0000000080)=""/61, 0x3d)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b8000000190001000000000000000000dc020078000000000000000000000000ff02000000000000e26ea7250000000100000000000000000a"], 0xb8}}, 0x0)
sendmsg$nl_xfrm(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB="650100001b"], 0x188}}, 0x0)
semop(0x0, &(0x7f0000001400), 0x2aaaaaaaaaaaabab)
sendmsg$key(0xffffffffffffffff, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x2, 0xd, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, [@sadb_x_policy={0x8, 0x12, 0x2, 0x2, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@dev}}, @sadb_address={0x5, 0x0, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @empty}}, @sadb_x_sec_ctx={0x1}]}, 0x80}}, 0x0)
sched_getattr(r1, &(0x7f00000000c0)={0x38}, 0x38, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x4, r1, 0x0, &(0x7f0000000080))
r5 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r6=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000000)={r6}, 0x10)

13.381774353s ago: executing program 4 (id=1120):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x6, 0x20, 0x0, 0x400}, {0x3, 0x48, 0x7}]})
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000400), &(0x7f0000000040), &(0x7f00000003c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xffffffffffffffca, &(0x7f0000000040)=0x10001)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r3 = socket(0x8000000010, 0x2, 0x0)
write(r3, &(0x7f00000002c0), 0x0)
socket(0x840000000002, 0x3, 0x100)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
semop(0x0, &(0x7f0000000240)=[{0x2, 0x7fff}], 0x1)
syz_open_procfs(0x0, &(0x7f0000000300)='fd\x00')
getdents(r2, &(0x7f0000000080)=""/61, 0x3d)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b8000000190001000000000000000000dc020078000000000000000000000000ff02000000000000e26ea7250000000100000000000000000a"], 0xb8}}, 0x0)
sendmsg$nl_xfrm(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB="650100001b"], 0x188}}, 0x0)
semop(0x0, &(0x7f0000001400), 0x2aaaaaaaaaaaabab)
sendmsg$key(0xffffffffffffffff, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x2, 0xd, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, [@sadb_x_policy={0x8, 0x12, 0x2, 0x2, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@dev}}, @sadb_address={0x5, 0x0, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @empty}}, @sadb_x_sec_ctx={0x1}]}, 0x80}}, 0x0)
sched_getattr(r1, &(0x7f00000000c0)={0x38}, 0x38, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x4, r1, 0x0, &(0x7f0000000080))
r5 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r6=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000000)={r6}, 0x10)

7.756003399s ago: executing program 1 (id=1362):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) (async)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
socket(0x0, 0x0, 0x0)
unshare(0x0)
io_submit(0x0, 0x0, 0x0)
unshare(0x6a040000)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17) (async)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
socket$inet6_udp(0xa, 0x2, 0x0) (async)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$inet6(r1, &(0x7f0000000340)={&(0x7f0000000240)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}}, 0x1c, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1200000000000000110000006700000020010000000000000009000000000000001ab6069c9e103e6603b255dd3aa9", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x28}, 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
r3 = socket$inet(0x2, 0xa, 0x1ff)
getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) (async)
getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r4=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f0000000140)={r4}, &(0x7f0000000180)=0xc) (async)
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f0000000140)={r4}, &(0x7f0000000180)=0xc)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={r4, 0x0, &(0x7f0000000180)}, &(0x7f0000000200)=0x10) (async)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={r4, 0x0, &(0x7f0000000180)}, &(0x7f0000000200)=0x10)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a) (async)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000840)=@mangle={'mangle\x00', 0x64, 0x6, 0x560, 0x100, 0x1d8, 0x100, 0x100, 0x2a8, 0x490, 0x490, 0x490, 0x490, 0x490, 0x6, 0x0, {[{{@ipv6={@empty, @loopback, [], [], 'gre0\x00', 'bond0\x00'}, 0x0, 0xd8, 0x100, 0x0, {}, [@common=@srh={{0x30}}]}, @common=@unspec=@CONNSECMARK={0x28}}, {{@uncond, 0x0, 0xa8, 0xd8}, @common=@unspec=@CONNMARK={0x30}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0x3c0}}, {{@ipv6={@mcast2, @private1, [], [], 'pim6reg1\x00', 'vlan1\x00'}, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@hl={{0x28}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv4=@remote, @ipv6=@mcast1}}}, {{@ipv6={@private0, @remote, [], [], 'tunl0\x00', 'bond_slave_0\x00'}, 0x0, 0xa8, 0xd0}, @HL={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5c0) (async)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000840)=@mangle={'mangle\x00', 0x64, 0x6, 0x560, 0x100, 0x1d8, 0x100, 0x100, 0x2a8, 0x490, 0x490, 0x490, 0x490, 0x490, 0x6, 0x0, {[{{@ipv6={@empty, @loopback, [], [], 'gre0\x00', 'bond0\x00'}, 0x0, 0xd8, 0x100, 0x0, {}, [@common=@srh={{0x30}}]}, @common=@unspec=@CONNSECMARK={0x28}}, {{@uncond, 0x0, 0xa8, 0xd8}, @common=@unspec=@CONNMARK={0x30}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0x3c0}}, {{@ipv6={@mcast2, @private1, [], [], 'pim6reg1\x00', 'vlan1\x00'}, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@hl={{0x28}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv4=@remote, @ipv6=@mcast1}}}, {{@ipv6={@private0, @remote, [], [], 'tunl0\x00', 'bond_slave_0\x00'}, 0x0, 0xa8, 0xd0}, @HL={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5c0)
syz_emit_vhci(&(0x7f0000000640)=ANY=[], 0x22)
r6 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r6, 0xc02064b2, &(0x7f0000000040)={0x7ff, 0xef9, 0x1})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r6, 0xc02064b2, &(0x7f00000000c0)={0x5, 0x8, 0x7fff}) (async)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r6, 0xc02064b2, &(0x7f00000000c0)={0x5, 0x8, 0x7fff})
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x11, r6, 0x1000f0000)

6.919898865s ago: executing program 0 (id=1364):
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
open(&(0x7f0000000180)='./bus\x00', 0x14957e, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
pipe(&(0x7f0000000100))
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@newlink={0x50, 0x10, 0x403, 0x0, 0x21, {0x0, 0x0, 0x0, 0x0, 0x88adfda5}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}]}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x50}}, 0x0)

6.783257563s ago: executing program 1 (id=1365):
socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000000)={'syztnl1\x00', &(0x7f0000000080)={'syztnl2\x00', 0x0, 0x2f, 0x1, 0xbb, 0x8001, 0xc, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast1, 0x1, 0x10, 0x6, 0x5}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000"], &(0x7f0000000000)='GPL\x00'}, 0x90)
socket$rds(0x15, 0x5, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000f0cd0000000000"], &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000280)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f00000002c0)={@val, @void, @eth={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x26}, @remote, @val={@void}, {@mpls_uc={0x894f}}}}, 0x16)

5.141070689s ago: executing program 0 (id=1366):
pipe2(&(0x7f00000002c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
ioctl$NS_GET_OWNER_UID(r0, 0xb704, &(0x7f0000000040)=<r1=>0x0)
ioprio_set$uid(0x3, r1, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x4000000020042, 0x0)
r2 = syz_usb_connect(0x0, 0x24, &(0x7f0000000400)={{0x12, 0x1, 0x0, 0xe4, 0xc5, 0xad, 0x10, 0x61d, 0xc020, 0x9c15, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x10, 0x2d, 0xb0}}]}}]}}, 0x0)
syz_usb_control_io$uac1(r2, 0x0, &(0x7f0000000440)={0x44, &(0x7f0000000200)={0x0, 0x0, 0x3, "76af7c"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$printer(r2, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x1c2}, 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x9)
r3 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x1458c2, 0x0)
r4 = openat$random(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendfile(r3, r4, 0x0, 0x15)
r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r5, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x517b, 0x80, 0x3, 0x0, 0x0, r3}, &(0x7f00000002c0), &(0x7f0000000040))
r6 = openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
msync(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x5)
write$6lowpan_enable(r6, &(0x7f0000000080)='1', 0x1)
socket$inet6_sctp(0xa, 0x5, 0x84)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[], 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000640), 0x0, 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)

5.040188416s ago: executing program 3 (id=1368):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0}}, 0x0)

4.898862037s ago: executing program 1 (id=1369):
bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48) (async)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800e24b0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800e24b0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000280)='timer_start\x00'}, 0x10)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000001840)=@ringbuf={{0x18, 0x7}, {{0x18, 0x1, 0x1, 0x0, r2}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1b}}, {}, [@snprintf={{}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x5}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x5, 0x1, 0xb, 0x8, 0xa, 0x4}, {0x7, 0x0, 0x0, 0x9}, {0x7, 0x1, 0xb, 0x0}, {0x7, 0x0, 0x0, 0x0}, {}, {0x18, 0x2, 0x2, 0x0, r1}, {}, {0x17, 0x0, 0x0, 0x76}}], {{}, {0x6, 0x0, 0xb, 0x8}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00'}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00'}, 0x10)
mknod(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002380)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r4 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000040)='./file0\x00', &(0x7f0000001300)=ANY=[], 0x0, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000380)={0x0, @dev, @broadcast}, &(0x7f00000003c0)=0xc) (async)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000380)={<r5=>0x0, @dev, @broadcast}, &(0x7f00000003c0)=0xc)
pipe2(&(0x7f0000000400), 0x80880) (async)
pipe2(&(0x7f0000000400)={0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x80880)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000640)={0x1b, 0x0, 0x0, 0x5, 0x0, 0x1, 0x4, '\x00', r5, r6, 0x4, 0x0, 0x4}, 0x48)
creat(&(0x7f0000000080)='./bus\x00', 0x0) (async)
r7 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000000240), &(0x7f0000000280)=0x5)
connect$inet(r8, &(0x7f0000000440)={0x2, 0x4e21, @private=0xa010101}, 0x10)
fsetxattr$system_posix_acl(r7, &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="0200000020"], 0xfe44, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48) (async)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x18, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x18, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r9, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='inet_sock_set_state\x00', r10}, 0x10)
r11 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r11, 0x0, 0x0)
syz_usb_control_io$hid(r11, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="00222200000096232d06e53f770c0000002a9000070900be0083"], 0x0}, 0x0)

4.852215558s ago: executing program 3 (id=1370):
r0 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000040), 0xc81, 0x0)
write$UHID_CREATE2(r0, 0x0, 0x194)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet6(0xa, 0x3, 0xff)
write$binfmt_aout(r1, &(0x7f00000034c0)=ANY=[], 0x28)
listen(r1, 0x2)
socket$inet6_sctp(0xa, 0x0, 0x84)
setsockopt$SO_BINDTODEVICE_wg(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000080)='wg2\x00', 0x4)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040))
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r4, &(0x7f0000000040)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @local}}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000ac0)="ee", 0xffffff1f}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb71658bda99b49720fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)
r5 = socket(0x200000000000011, 0x2, 0x0)
bind$packet(r5, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
r6 = socket(0x200000000000011, 0x2, 0x0)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(fcrypt-generic)\x00'}, 0xac)
accept4(r7, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, &(0x7f0000000200)="ad56b6cc0400aeb9952d8992ea5400c2", 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000300)={'pim6reg\x00', <r8=>0x0})
bind$packet(r6, &(0x7f0000000100)={0x11, 0x800, r8, 0x1, 0x0, 0x6, @multicast}, 0x14)

4.666896951s ago: executing program 2 (id=1371):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$netlink(0x10, 0x3, 0x0)
socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x107, 0xf, &(0x7f0000000000), 0x49)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000180)}, {0x0}], 0x2}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000840), 0xffffffffffffffff)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
sendmsg(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000001c0)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x4e23, @empty}, 0x2, 0x4, 0x4}}, 0x80, &(0x7f0000000240)=[{&(0x7f0000000340)="6a2caf458750fc9564c1fa690e2f7b4c83a71b35397627850e9f0ec311eefc0b4a171c9a3467daabacb698a13bc0dbeeb05d12a9f5eb2c26c893351e60684192697429b4ab142a0302bfc24aa9c38ab6f4eefb8885ebd6b82ec71223faa614a46c9a4c10a416c0c9b984f3aaecffedd4cf1c04482d6af5a6a2bc3dc1368594768ca3f28a8107b89215bb43ec2d2841e4a5e303d69ac15b726890e557dc812b31f9803811caeaf385ab10a05d2c4c5d7bd0d81e203507b7b7f81b6fc941d4be3247679c6a59032c0b38a3665894164da2ffc2fce2ed634290", 0xd8}, {&(0x7f00000000c0)="482ddbf2a96d2d4dd57ae131659875432a", 0x11}, {&(0x7f0000000440)="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", 0xfc}, {&(0x7f0000000140)="0a0b032323b42cd44a1a1e0c62db0a60bed402445697ba437caabf4278747d9a4e6d554d03b27d75e85cf814fe2392aa", 0x30}], 0x4, &(0x7f0000000640)=[{0x38, 0x116, 0x8, "f7805c204fb0efc2ba0cea4b404ca48ce1c6e5e8b217ced878611bb48516eddba402e9af11"}, {0xb0, 0xff, 0x100, "0b3524c4a7c11e720565f0a3caeab20435682666be3a9a832770f75d42f716f235ea0a316f4196aa7e1cce8922d0ad81b9cafa7e5dd15c335cc3540c6d7a8ef22e29393605a227b304503a4d806289afd06b8043b912662dfee7060dc1435a6f3bf68b921059ffef71bded01f158bc635a8516dfd2cabde6f195d689c099c6b96a77876c73cb002d2f9aa9c4ac9b8549f30706bae62a0d6efc04"}], 0xe8}, 0x4000004)
r2 = socket$kcm(0x10, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000600)={0x0, 0x3, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)

4.302880046s ago: executing program 2 (id=1372):
r0 = socket$kcm(0x10, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0xfe1, 0x0, 0x1, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x2, 0x2}, 0x48)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000200)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000440)=0x14)
sendmsg$nl_route_sched(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xf}}, [@TCA_INGRESS_BLOCK={0x8, 0xd, 0x5}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000840)=@newchain={0x24, 0x2e, 0x901, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xfff1}}}, 0x24}}, 0x0)
socket$kcm(0xa, 0x6, 0x0)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, &(0x7f00000000c0))
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
openat$smackfs_ipv6host(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$uac1(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$uac1(0xffffffffffffffff, &(0x7f0000000180)={0x14, &(0x7f0000000340)={0x20, 0xd, 0xbf, {0xbf, 0x4, "626fabd1355392400569358470b5dba0ec3a84d318ce6cfb0c98bc950c12885874595a8c20f9a00a30ba2e0ed0b2d88bb3bcd0d77a8aafd39fc51af4019da62fbff5af560133477a1644f586ba27ba7dbed204abb9a2b3c7a9aed9fe953133e84c6c59311bff60e694c2c6acbc29b49c7238a3ebf149a6f3eb98f8a4708ef3a423cffa1e2eafdd18512bc66928d26fd3e3fe40d0d1d6efdfd68216dd8cc133a9f221f1077618040b67ace861f3dc7ae4dab00ae367a40e0531ecce107b"}}, &(0x7f0000000100)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x42b}}}, &(0x7f0000000740)={0x44, &(0x7f0000000440)={0x20, 0x14, 0xf6, "62c4beb424a99604e8de56342ca95f94104a0eafcfaab46c69cfc127c1f2aeeaf8f9d7153d56d1991a01de6289391c89fd3aa0537cc4418c020ebfef2835c50323f2af0b12c3313864aead3ae0e091a75685c5c49c8c55a2298432f94dbfaf0b8865c7748af6ab80a3fdf05f969f2124671b5f7194f223d35f32a8ea9780d4541ff31073d269e010c5764b59a252b40884261c3c5ef04539a835fd6aeaa8f12a2e58c8d0aa4dd1ff864b2d26ba55aa65c5ead5e713e70620dc6a8bf27e3ff6251db9d92a19b6aadc4df1396b355fe7a1e32bfdf19c10f26b0c2c07fed4fa2b8bd89a544f42d8e603ab0fa9d50c422bf2b0a160cf2789"}, &(0x7f00000001c0)={0x0, 0xa, 0x1, 0x47}, &(0x7f0000000200)={0x0, 0x8, 0x1, 0x8}, &(0x7f0000000540)={0x20, 0x81, 0x2, "41c3"}, &(0x7f0000000580)=ANY=[@ANYBLOB="caecddd143754b04af035430362f9d06be4acc1663f44bd3e5097b81dd520beef13f881e3dccdb3444edaeeb608c157f443ab127ed69e038840eb4bb65828d6dd5faa7589b"], &(0x7f0000000a80)=ANY=[@ANYBLOB="208302000000e01176e7cf0b1beb152d201fb4bdf2c55e3e17dc6d34f77d7c20fb7957b5b6ec012fee1f40d36bb7"], &(0x7f00000006c0)={0x20, 0x84, 0x2, "32b3"}, &(0x7f0000000700)={0x20, 0x85, 0x3, "f471dd"}})
syz_usb_control_io$cdc_ecm(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(0xffffffffffffffff, 0x0, 0x0)

3.743344181s ago: executing program 3 (id=1373):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x8, &(0x7f0000001480)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9"], 0x0}, 0x90)
syz_usb_connect(0x0, 0x2d, &(0x7f0000001600)=ANY=[@ANYBLOB="12010000ec31f8104c1302007eec0102030109021b0001000000000904000001018b75000905"], 0x0)
syz_open_dev$evdev(&(0x7f0000000100), 0x4000000, 0x44000)

3.337418628s ago: executing program 2 (id=1374):
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0)
r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
listen(r1, 0x0)
ioctl$SIOCX25SDTEFACILITIES(r1, 0x89eb, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, "195847a0aa45de6b85eae3efca1b99bbc529f7cf", "39e8599818f836f17fc62ac05f77a36d35695c8b"})

3.235847781s ago: executing program 2 (id=1375):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(0xffffffffffffffff, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x1000}, 0x4)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000440)={'veth1_to_bond\x00', <r3=>0x0})
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f00000005c0)=0xf3e, 0x4)
sendto$packet(r2, &(0x7f00000000c0)="3f033608260812002c001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @multicast}, 0x14)
setsockopt$packet_tx_ring(r1, 0x107, 0x5, &(0x7f0000000080)=@req3={0x8000, 0x6, 0x300, 0xfc}, 0x1c)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000400)=ANY=[], 0x2c}, 0x1, 0x2000000}, 0x0)

2.95914265s ago: executing program 2 (id=1376):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000200)={0x60, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x11}, @IPSET_ATTR_BUCKETSIZE={0x5}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_TYPENAME={0x13, 0x3, 'hash:net,iface\x00'}]}, 0x60}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x7, &(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000180)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r1, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f00000000c0)={0x30b})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200))
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = getpid()
sched_setscheduler(r3, 0x0, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x0, 0x4, 0x4}, 0x48)
r4 = open(&(0x7f0000002000)='./bus\x00', 0x103002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000a80)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0xaf01, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000380)=@raw={'raw\x00', 0x3c1, 0x3, 0x2f0, 0x0, 0x178, 0xc, 0x0, 0x178, 0x220, 0x258, 0x258, 0x220, 0x258, 0x3, 0x0, {[{{@ipv6={@loopback={0x1f0}, @mcast2, [], [], 'syzkaller0\x00', 'netpci0\x00', {}, {}, 0x3a}, 0x0, 0x108, 0x148, 0x0, {}, [@common=@unspec=@statistic={{0x38}}, @common=@icmp6={{0x28}, {0x0, "c375", 0x2}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x0, 0x0, "1f4f4328b954deca86e41ed96a4ea63033f276cd53571aadaab6f00dbd07"}}}, {{@ipv6={@mcast1, @private1, [], [], 'wg2\x00', 'hsr0\x00'}, 0x0, 0xa8, 0xd8}, @common=@inet=@SET2={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x350)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
execve(&(0x7f00000006c0)='./bus\x00', 0x0, &(0x7f0000000980)=[0x0, 0x0, 0x0, &(0x7f00000008c0)='K', 0x0])
r7 = eventfd(0x802)
ioctl$VHOST_SET_VRING_KICK(r5, 0x4008af20, &(0x7f0000000040)={0x1, r7})
socket$nl_netfilter(0x10, 0x3, 0xc)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)

2.455837064s ago: executing program 1 (id=1377):
memfd_create(0x0, 0x4)
syz_open_dev$video4linux(&(0x7f0000000000), 0x0, 0x0)
pipe2(&(0x7f0000000000), 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000480), 0x6e, 0x60041)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="0406030000003303fce4ed412f63789eec9e28612ef6eaf5af965cee7202e3d132029c0798c41e305fbf3b56b56b5f4e2430954b9cf4896fbac55acbadf860865a1efbfda5cc8075dca7b902547beb582288d631cbf6eb26702b7cbe6441c010cb45e1b94b8a8bf27877b559d4e0b33051c1"], 0x6)
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'batadv_slave_0\x00'})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
unshare(0x2a020480)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/reserved_size', 0x74fa02, 0x0)
write$cgroup_int(r0, 0x0, 0x0)
chown(&(0x7f0000000000)='./file0\x00', 0xee01, 0xffffffffffffffff)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x5, &(0x7f00000006c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000005300000085000000080000"], &(0x7f0000000080)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x68}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0xb, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETSW(r3, 0x5403, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "90737f0000ff19c28bdcd6d157206a59ff13eb"})
r4 = dup(r3)
ioctl$TCSETAF(r3, 0x5408, &(0x7f0000000080)={0x4009, 0x0, 0x0, 0x82fa})
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000100)=0xff)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r5 = syz_open_dev$ttys(0xc, 0x2, 0x0)
r6 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_DEL_RULE(r6, &(0x7f0000001500)={&(0x7f0000001040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000014c0)={&(0x7f0000001080)=ANY=[@ANYBLOB="24040000f403000227bd7000fedbdf250200000001000000330000000300000001000000070000000000008008000000000000002c0000002f0500000100000000e0ff010100000008000000ff0100005caa76590700000002000000800000000400000000000000070000000180ffff010000000300000008000000030000000100000000000000000000000004000008000000010001009100000007000000ff070000070000000600000006000000060000000300000000800000000000000100000007000000050000000100000001000000000000000f000000f5000000ff0000000000000000000000030000000500000056e900000200000004000000070000000300000004000000010000000000000020060000ff01000004000000abf7ffff020000001f000000f8ffffff9f0b000004000000000000000000008006000000000200000000008000000000000000000900000005100000090000007f00000008000000070000000900000005000000070000000600000000000000c94a00000004000002000000010000004f0f00000000000000000000990500000110000001010000fbffffff01000000ff7f0000018000000500000007000000010000a84d00000000100000cf2d216f0180000000000000000080020200000000000000ff7f000080000000040000000200000003000000400000000300000000000000f9ffffff01f8ffff040000000000000000000000810000000010000007000000ff07000004000000010400000500000000000000f700000001fcffffffffffff030000000010000081000000ff01000000020000060000000600000009000000020000000000000004000000000000006b00000006000000feffffff81000000e20c0000000000000100000006000000070000000700000000000000580d0000000000000900000007000000080000000600000000010000ff7f0000090000000300000004000000020000001f00000008000000cca30000ff07000006000000020000006f0000000200000000000000024000006d00000009000000774d0000d40d00000400000001000000072e0000040000000300000000000000000200000000000000800000000000004e00000020000000200000002f0d000003000000ffffffff0100000040000000ffff200007000000080000000000000007000000c30000000000008006000000ff0f0000070000000000000091050000ff0f00000100000000040000ffff000007000000070000000600000005000000010000000100000001000100e900000000000000ff07000004000000000000000000000000010000c3f0fd7802000000070000000a0f0000020000000000000001000000ff7f000002000000020000009e0c00000900000001000100c00000005f2200001f00000002000000f9ffffff40000000020000009b000000040000005c2c2e00"], 0x424}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)
ioctl$TIOCGPKT(r5, 0x40045431, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000100)='GPL\x00'}, 0x90)

2.293966484s ago: executing program 2 (id=1378):
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f0000000180)={0x0, 0x8000, {<r0=>0x0}, {0xffffffffffffffff}, 0x0, 0x200})
prlimit64(r0, 0xa, &(0x7f00000001c0)={0x4, 0x7c}, &(0x7f0000000200))
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB="200000001000010700000000004000000a0000000c0002006e6c383032313100"], 0x20}}, 0x0)
recvmmsg(r2, &(0x7f00000039c0)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000240)=""/51, 0x33}, {&(0x7f0000003a80)=""/4090, 0xffa}, {&(0x7f0000000480)=""/201, 0xc9}], 0x3}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000000)=""/97, 0x61}, {&(0x7f00000025c0)=""/4073, 0xfe9}], 0x2}}], 0x3, 0x0, 0x0)
socket(0x0, 0x0, 0x20000)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000000380), &(0x7f0000000280)=<r3=>0x0)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r4)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @link_local})
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r5 = inotify_init1(0x0)
fcntl$setown(r5, 0x8, 0xffffffffffffffff)
fcntl$getownex(r5, 0x10, &(0x7f0000000140)={0x0, <r6=>0x0})
r7 = syz_open_procfs(r6, &(0x7f0000000600)='fd/4\x00')
ioctl$EXT4_IOC_GROUP_EXTEND(r7, 0x40305839, &(0x7f0000000240))
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SIOCGSKNS(0xffffffffffffffff, 0x894c, 0x0)
syz_io_uring_submit(0x0, r3, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
r8 = io_uring_setup(0x0, 0x0)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0x11, 0x20000000, r9)

1.979271527s ago: executing program 0 (id=1379):
socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000000)={'syztnl1\x00', &(0x7f0000000080)={'syztnl2\x00', 0x0, 0x2f, 0x1, 0xbb, 0x8001, 0xc, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast1, 0x1, 0x10, 0x6, 0x5}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000"], &(0x7f0000000000)='GPL\x00'}, 0x90)
socket$rds(0x15, 0x5, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000f0cd0000000000"], &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000280)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f00000002c0)={@val, @void, @eth={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x26}, @remote, @val={@void}, {@mpls_uc={0x894f}}}}, 0x16)

1.978979012s ago: executing program 1 (id=1380):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0}}, 0x0)

1.909552525s ago: executing program 3 (id=1381):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f0000000540)={'macvlan0\x00', 0x100})
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, &(0x7f0000000740)=@pppol2tpv3={0x18, 0x2, {0x0, 0xffffffffffffffff, {0x2, 0x0, @private}}}, 0x2e)
ioctl$SIOCSIFMTU(r1, 0x8922, &(0x7f00000000c0)={'team_slave_1\x00', 0x1ff})
ioctl$SIOCSIFMTU(r1, 0x8922, &(0x7f0000000080)={'veth1_macvtap\x00', 0x1000})
ioctl$SIOCSIFMTU(r1, 0x8922, &(0x7f0000000000)={'batadv_slave_0\x00', 0x5})
ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f0000000040)={'veth1_vlan\x00', 0xd3})
r2 = socket$can_raw(0x1d, 0x3, 0x1)
socket$unix(0x1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
preadv(r3, &(0x7f00000004c0)=[{&(0x7f000001aa80)=""/102384, 0x18ff0}, {&(0x7f0000000340)=""/241, 0xf1}, {&(0x7f0000000140)=""/9, 0x9}, {&(0x7f0000000240)=""/96, 0x60}, {&(0x7f0000000440)=""/87, 0x57}], 0x5, 0x0, 0x400)
listen(0xffffffffffffffff, 0x3)
socket$inet_dccp(0x2, 0x6, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1e, 0x0, 0x4, 0x998, 0x0, r3, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2}, 0x48)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000000)={r4, 0xfffffffffffffecb, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(r2, 0x8983, &(0x7f0000000600))
r6 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000200)=0xffffffffffffffff, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@bloom_filter={0x1e, 0xd116, 0x6, 0x2, 0x284, r4, 0x7, '\x00', r5, r6, 0x0, 0x1, 0x1, 0xa}, 0x48)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r3, 0x89f0, &(0x7f0000000300)={'syztnl1\x00', &(0x7f0000000580)={'ip6gre0\x00', r5, 0x2f, 0x7f, 0x9, 0x20000002, 0x8, @remote, @mcast2, 0x8000, 0x700, 0x0, 0x1}})
ptrace$getenv(0x4201, 0x0, 0x101, &(0x7f0000000200))
inotify_init1(0x0)
r7 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r7, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
listen(r7, 0x800803fe)
r8 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r8, &(0x7f00000000c0)={0x2, 0x4e20, @local}, 0x10)

1.778220444s ago: executing program 1 (id=1382):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x169802, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000300)={'syztnl0\x00', &(0x7f0000000100)={'sit0\x00', <r1=>0x0, 0x10, 0x7, 0x0, 0x8, {{0xb, 0x4, 0x1, 0x1, 0x2c, 0x68, 0x0, 0x0, 0x29, 0x0, @loopback, @rand_addr=0x64010101, {[@end, @generic={0x44, 0x5, "631296"}, @generic={0x83, 0xf, "62ea2c9202169863e8832d804f"}]}}}}})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0x2, 0x9, 0x8, 0x40, 0xffffffffffffffff, 0x5, '\x00', r1, 0xffffffffffffffff, 0x5, 0x2, 0x1, 0x5}, 0x48)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendto$inet6(r3, &(0x7f0000000000)="01028000", 0x4, 0x0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @empty}, 0x1c)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0xe, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="3800000d000000000000000000000000950f8afbba946611c68d42937700000000000000f2078d6782f2d6b30fa5541d626cc2b8221e26a32b3caecdadaf"], 0x0}, 0x90)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={@map=r2, r4, 0x26}, 0x10)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioprio_set$pid(0x1, 0x0, 0x4000)
r5 = creat(0x0, 0x0)
io_setup(0x1, &(0x7f0000000000)=<r6=>0x0)
io_submit(r6, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x2600, 0xc8, 0x8, 0x0, 0x0, r5, 0x0}])
r7 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000007, 0x13, 0xffffffffffffffff, 0x0)
r8 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000040)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f00020000000905050200067e001009058b1e20"], 0x0)
syz_usb_control_io(r8, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r8, 0x0, 0x0)
r9 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
write$char_usb(r9, &(0x7f0000000200)='V', 0x1)
getpid()
sched_setscheduler(0x0, 0x2, 0x0)
r10 = syz_open_procfs(0x0, &(0x7f0000000000)='stack\x00')
pread64(r10, &(0x7f00000001c0)=""/204, 0xcc, 0x0)
ioctl$BLKRRPART(r7, 0x125f, 0x0)
unshare(0x2040400)
socket$unix(0x1, 0x1, 0x0)
r11 = syz_usb_connect$hid(0x6, 0x3f, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0xff, 0x1477, 0x1007, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0xff, 0x20, 0xe, [{{0x9, 0x4, 0x0, 0xd, 0x2, 0x3, 0x1, 0x5, 0x0, {0x9, 0x21, 0x6, 0x6, 0x1, {0x22, 0x9ae}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x5, 0x9, 0x4}}, [{{0x9, 0x5, 0x2, 0x3, 0x0, 0x5, 0x1}}]}}}]}}]}}, &(0x7f0000000680)={0xa, &(0x7f0000000380)={0xa, 0x6, 0x201, 0x8, 0x4, 0xbd, 0x8, 0xa}, 0xed, &(0x7f0000000ec0)={0x5, 0xf, 0xed, 0x1, [@generic={0xe8, 0x10, 0x0, "c2ed36ed3e431db32973b9cb0103ee63efd8d823ffe071547e262fdef78b67b84dac8350d267ad81953a7608e47eb63925ab6a0c7683064bd7133fdd153f432cb91ab80390f5a7bf697ff3423912df1ef92fe3755da13d41359f3d0ec2b0e882adec894ad4b2f97bcd541bb68130c19c2a41768a77fd544add8f81b6ff18f37e17c00b9f2db44bc902dbea4cfa5105f004faf23118190dcf580872655c21d082ca4b4388ab63b37518b2be19351448eb9504d961f189d6bb9e3ea0aadddb03e1589e458f1ec7cf399824e7e59582b2e29461b61c0e8f5032f0ad08ef3838ca2c05774257ae"}]}, 0x3, [{0x4, &(0x7f0000000500)=@lang_id={0x4}}, {0xa7, &(0x7f0000000540)=@string={0xa7, 0x3, "b5f9e39ffceea59f9559b2662273a21a28f246ad0f24bac319290c68b9a95aee693f495178ee10f75b6cf742d28ef0dfce30ae2766748ed2f82c1cda63f9e61555aa6475f77fdda585a73009290d760605b028221e9f2c0812a7a232a9fa8b2f52e4f8236bc21df585ba5197f06d0a53346331d3cbbe1748f886648d61f4ce2f8f6c2c00751624cc635b39004e5e6b42339997fe97b180871531129130f114e6fec2d8ba79"}}, {0x53, &(0x7f00000003c0)=ANY=[@ANYBLOB="53035552063918ffd635c01f5ec9d8dece2c50cfab247fe40ffd28068edf36ad966871f26798d411322450e777c0a1b731e5bf0cec3c7f54a5"]}]})
syz_usb_control_io(r11, &(0x7f0000000980)={0x2c, &(0x7f0000000700)={0x40, 0x3c, 0x36, {0x36, 0x0, "94583e7a511dcdbe9a02327e6c3d3429626e69380f92d9ce6737c33ae82fe012078d06cfacc4e5a9bfd5d32266e5bfaeddf860b2"}}, &(0x7f00000007c0)={0x0, 0x3, 0xbe, @string={0xbe, 0x3, "e8f4a5dca582423a6d676c901d96e96439c763db55400cd5fe2e2079c0607c18d96153970979f65aa996b8de57049b34de224b0f87020e7440c2ec5572d2bd5afde46c33c651396585570bdc5eac38294bc4b67d3383f91737a12e1b46a53a26bf01dd1ab58ade2403706336b58ad30efe770205d4d56e15f040c7edd26f7b553ad2b3200eb3ea41b4a32f85e461019feb4671feb96a003fe1bd9f708e66eda7226ab6820cbe39a5e5f8f6617c16bc5e483192f14451c3a897eac19f"}}, &(0x7f00000008c0)=ANY=[@ANYBLOB="000f05000000b5f805"], &(0x7f0000000900)={0x20, 0x29, 0xf, {0xf, 0x29, 0x4, 0x0, 0x3, 0x86, "ce943bf0"}}, 0x0}, &(0x7f0000000dc0)={0x84, &(0x7f00000009c0)=ANY=[@ANYBLOB="00101d000000aeed4626a7dd4dc170e708f0c0c309ee0c7f75f913185853faa02156e5"], &(0x7f0000000a00)={0x0, 0xa, 0x1, 0x2}, &(0x7f0000000a40)={0x0, 0x8, 0x1, 0x5}, &(0x7f0000000a80)={0x20, 0x0, 0x4, {0x3, 0x2}}, &(0x7f0000000ac0)={0x20, 0x0, 0x4, {0x200, 0xc0}}, &(0x7f0000000b00)={0x40, 0x7, 0x2, 0xfff6}, &(0x7f0000000b40)={0x40, 0x9, 0x1, 0x10}, &(0x7f0000000b80)={0x40, 0xb, 0x2, "61c0"}, &(0x7f0000000bc0)={0x40, 0xf, 0x2, 0x8000}, &(0x7f0000000c00)={0x40, 0x13, 0x6, @remote}, &(0x7f0000000c40)={0x40, 0x17, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}}, &(0x7f0000000c80)={0x40, 0x19, 0x2, "3c12"}, &(0x7f0000000cc0)={0x40, 0x1a, 0x2, 0x80}, &(0x7f0000000d00)={0x40, 0x1c, 0x1, 0x2}, &(0x7f0000000d40)={0x40, 0x1e, 0x1, 0x5b}, &(0x7f0000000d80)={0x40, 0x21, 0x1, 0x4d}})

1.660274555s ago: executing program 0 (id=1383):
r0 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000040), 0xc81, 0x0)
write$UHID_CREATE2(r0, 0x0, 0x194)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet6(0xa, 0x3, 0xff)
write$binfmt_aout(r1, &(0x7f00000034c0)=ANY=[], 0x28)
listen(r1, 0x2)
socket$inet6_sctp(0xa, 0x0, 0x84)
setsockopt$SO_BINDTODEVICE_wg(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000080)='wg2\x00', 0x4)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040))
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r4, &(0x7f0000000040)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @local}}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000ac0)="ee", 0xffffff1f}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb71658bda99b49720fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)
r5 = socket(0x200000000000011, 0x2, 0x0)
bind$packet(r5, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
r6 = socket(0x200000000000011, 0x2, 0x0)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(fcrypt-generic)\x00'}, 0xac)
accept4(r7, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, &(0x7f0000000200)="ad56b6cc0400aeb9952d8992ea5400c2", 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000300)={'pim6reg\x00', <r8=>0x0})
bind$packet(r6, &(0x7f0000000100)={0x11, 0x800, r8, 0x1, 0x0, 0x6, @multicast}, 0x14)

910.971951ms ago: executing program 3 (id=1384):
r0 = socket$kcm(0x10, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0xfe1, 0x0, 0x1, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x2, 0x2}, 0x48)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000200)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000440)=0x14)
sendmsg$nl_route_sched(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xf}}, [@TCA_INGRESS_BLOCK={0x8, 0xd, 0x5}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000840)=@newchain={0x24, 0x2e, 0x901, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xfff1}}}, 0x24}}, 0x0)
socket$kcm(0xa, 0x6, 0x0)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, &(0x7f00000000c0))
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
openat$smackfs_ipv6host(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$uac1(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$uac1(0xffffffffffffffff, &(0x7f0000000180)={0x14, &(0x7f0000000340)={0x20, 0xd, 0xbf, {0xbf, 0x4, "626fabd1355392400569358470b5dba0ec3a84d318ce6cfb0c98bc950c12885874595a8c20f9a00a30ba2e0ed0b2d88bb3bcd0d77a8aafd39fc51af4019da62fbff5af560133477a1644f586ba27ba7dbed204abb9a2b3c7a9aed9fe953133e84c6c59311bff60e694c2c6acbc29b49c7238a3ebf149a6f3eb98f8a4708ef3a423cffa1e2eafdd18512bc66928d26fd3e3fe40d0d1d6efdfd68216dd8cc133a9f221f1077618040b67ace861f3dc7ae4dab00ae367a40e0531ecce107b"}}, &(0x7f0000000100)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x42b}}}, &(0x7f0000000740)={0x44, &(0x7f0000000440)={0x20, 0x14, 0xf6, "62c4beb424a99604e8de56342ca95f94104a0eafcfaab46c69cfc127c1f2aeeaf8f9d7153d56d1991a01de6289391c89fd3aa0537cc4418c020ebfef2835c50323f2af0b12c3313864aead3ae0e091a75685c5c49c8c55a2298432f94dbfaf0b8865c7748af6ab80a3fdf05f969f2124671b5f7194f223d35f32a8ea9780d4541ff31073d269e010c5764b59a252b40884261c3c5ef04539a835fd6aeaa8f12a2e58c8d0aa4dd1ff864b2d26ba55aa65c5ead5e713e70620dc6a8bf27e3ff6251db9d92a19b6aadc4df1396b355fe7a1e32bfdf19c10f26b0c2c07fed4fa2b8bd89a544f42d8e603ab0fa9d50c422bf2b0a160cf2789"}, &(0x7f00000001c0)={0x0, 0xa, 0x1, 0x47}, &(0x7f0000000200)={0x0, 0x8, 0x1, 0x8}, &(0x7f0000000540)={0x20, 0x81, 0x2, "41c3"}, &(0x7f0000000580)=ANY=[@ANYBLOB="caecddd143754b04af035430362f9d06be4acc1663f44bd3e5097b81dd520beef13f881e3dccdb3444edaeeb608c157f443ab127ed69e038840eb4bb65828d6dd5faa7589b"], &(0x7f0000000a80)=ANY=[@ANYBLOB="208302000000e01176e7cf0b1beb152d201fb4bdf2c55e3e17dc6d34f77d7c20fb7957b5b6ec012fee1f40d36bb7"], &(0x7f00000006c0)={0x20, 0x84, 0x2, "32b3"}, &(0x7f0000000700)={0x20, 0x85, 0x3, "f471dd"}})
syz_usb_control_io$cdc_ecm(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(0xffffffffffffffff, 0x0, 0x0)

675.603376ms ago: executing program 0 (id=1385):
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0)
r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
listen(r1, 0x0)
ioctl$SIOCX25SDTEFACILITIES(r1, 0x89eb, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, "195847a0aa45de6b85eae3efca1b99bbc529f7cf", "39e8599818f836f17fc62ac05f77a36d35695c8b"})

463.775594ms ago: executing program 0 (id=1386):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000004, 0x4008031, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000780)='./file1\x00', 0x0)
llistxattr(0x0, &(0x7f0000000180)=""/54, 0x36)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$inet6(0xa, 0x1, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0))
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x0, 0x2, &(0x7f0000000800)=ANY=[@ANYRES16=r2], &(0x7f00000003c0)='GPL\x00', 0x0, 0x37, &(0x7f0000000440)=""/55, 0x40f00, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2, 0x0, &(0x7f0000000700)=[{0x0, 0x5}, {0x2, 0x4, 0x1}], 0x10, 0x5}, 0x90)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000300)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000480)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
mount$bind(&(0x7f00000004c0)='./file0/../file0\x00', &(0x7f0000000180)='./file0/../file0\x00', 0x0, 0x297881, 0x0)
mount$bind(&(0x7f0000000280)='./file0\x00', &(0x7f0000002100)='./file0/file0\x00', 0x0, 0x2187017, 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file2\x00', &(0x7f0000000040), 0x1020, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
symlinkat(0x0, 0xffffffffffffffff, 0x0)

0s ago: executing program 3 (id=1387):
r0 = socket$igmp(0x2, 0x3, 0x2)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
ioctl$SIOCAX25CTLCON(r1, 0x541b, 0xfffffffffffffffe)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000e8ffffff0000000000000000008500000061000000180100002020702500000000002020207b1af8ff00000000bfa10000000000000701eefff7ffffffb702000008000000b703000000000000850000009b0000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r2, 0x0, 0x0, 0x8, 0x0, &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_open_dev$sndpcmc(&(0x7f0000000180), 0x7fff, 0x180c0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
ioctl$AUTOFS_IOC_EXPIRE_MULTI(0xffffffffffffffff, 0x40049366, &(0x7f0000000980))
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000140), 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$SNDRV_PCM_IOCTL_WRITEI_FRAMES(0xffffffffffffffff, 0x40184150, 0x0)
ioctl$KVM_SET_CLOCK(r4, 0x4188aec6, &(0x7f0000000040))
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
r6 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r6, 0x0, 0xca, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@dev, @remote}, 0x10)
setsockopt$MRT_ADD_MFC(r0, 0x0, 0xcc, &(0x7f0000000140)={@multicast1, @multicast2, 0x0, "b2cc42e3c374637bf5d25333abb4ddbe47fa6600"}, 0x3c)

kernel console output (not intermixed with test programs):

get_register_driver returned -16
[  352.606936][ T9086] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  352.845745][ T5327] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  352.965151][ T9101] netlink: 52 bytes leftover after parsing attributes in process `syz.1.924'.
[  353.045681][ T5327] usb 4-1: Using ep0 maxpacket: 16
[  353.050392][ T9101] netlink: 56 bytes leftover after parsing attributes in process `syz.1.924'.
[  353.057491][ T5327] usb 4-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 25
[  353.085839][ T5327] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  353.115003][ T5327] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  353.138344][ T5327] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  353.165795][ T5327] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  353.201338][ T5327] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  353.219163][ T5327] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  353.246592][ T5327] usb 4-1: Product: syz
[  353.257510][ T5327] usb 4-1: Manufacturer: syz
[  353.273578][ T5327] usb 4-1: SerialNumber: syz
[  353.775246][ T9123] Invalid ELF header magic: != ELF
[  354.049500][ T9129] netlink: 'syz.0.929': attribute type 1 has an invalid length.
[  354.168357][ T9129] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  354.183071][ T9127] netlink: 4 bytes leftover after parsing attributes in process `syz.2.930'.
[  354.223206][ T9129] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  354.231163][ T5327] usb 4-1: USB disconnect, device number 22
[  354.240892][ T9127] netlink: 4 bytes leftover after parsing attributes in process `syz.2.930'.
[  354.262722][   T29] audit: type=1326 audit(1722845646.993:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9124 comm="syz.0.929" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd76b5779f9 code=0x0
[  354.597590][ T6786] udevd[6786]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  354.622257][ T9144] team0: entered promiscuous mode
[  354.635864][ T9144] team_slave_0: entered promiscuous mode
[  354.652429][ T9144] team_slave_1: entered promiscuous mode
[  354.676502][ T9144] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  354.694754][ T9144] bond0: (slave macvlan2): Enslaving as an active interface with an up link
[  355.306076][ T9153] xt_TPROXY: Can be used only with -p tcp or -p udp
[  355.837157][ T9156] FAULT_INJECTION: forcing a failure.
[  355.837157][ T9156] name failslab, interval 1, probability 0, space 0, times 0
[  355.856706][ T9158] fuse: Bad value for 'fd'
[  355.902884][ T9156] CPU: 0 UID: 0 PID: 9156 Comm: syz.2.935 Not tainted 6.11.0-rc1-syzkaller-00334-ga5dbd76a8942 #0
[  355.914065][ T9156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  355.924144][ T9156] Call Trace:
[  355.927442][ T9156]  <TASK>
[  355.930387][ T9156]  dump_stack_lvl+0x241/0x360
[  355.935102][ T9156]  ? __pfx_dump_stack_lvl+0x10/0x10
[  355.940337][ T9156]  ? __pfx__printk+0x10/0x10
[  355.944955][ T9156]  ? kmem_cache_alloc_noprof+0x44/0x2a0
[  355.950530][ T9156]  ? __pfx___might_resched+0x10/0x10
[  355.955845][ T9156]  should_fail_ex+0x3b0/0x4e0
[  355.960549][ T9156]  ? mas_alloc_nodes+0x26c/0x840
[  355.965504][ T9156]  should_failslab+0xac/0x100
[  355.970197][ T9156]  ? mas_alloc_nodes+0x26c/0x840
[  355.975155][ T9156]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  355.980548][ T9156]  mas_alloc_nodes+0x26c/0x840
[  355.985320][ T9156]  mas_preallocate+0xfca/0x1730
[  355.990179][ T9156]  ? __pfx_mas_preallocate+0x10/0x10
[  355.995471][ T9156]  ? __mas_set_range+0x133/0x3c0
[  356.000411][ T9156]  __split_vma+0x2e5/0xc30
[  356.004828][ T9156]  ? __pfx___split_vma+0x10/0x10
[  356.009772][ T9156]  vma_modify+0x194/0x350
[  356.014095][ T9156]  mlock_fixup+0x29e/0x3f0
[  356.018515][ T9156]  apply_vma_lock_flags+0x31e/0x460
[  356.023713][ T9156]  ? __pfx_apply_vma_lock_flags+0x10/0x10
[  356.029427][ T9156]  ? down_write_killable+0x19e/0x260
[  356.034707][ T9156]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  356.040686][ T9156]  do_mlock+0x535/0x7b0
[  356.044845][ T9156]  ? __pfx_do_mlock+0x10/0x10
[  356.049525][ T9156]  ? __secure_computing+0x125/0x370
[  356.054719][ T9156]  __x64_sys_mlock+0x60/0x70
[  356.059303][ T9156]  do_syscall_64+0xf3/0x230
[  356.063838][ T9156]  ? clear_bhb_loop+0x35/0x90
[  356.068509][ T9156]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  356.074398][ T9156] RIP: 0033:0x7f599b1779f9
[  356.078805][ T9156] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  356.098401][ T9156] RSP: 002b:00007f599bec0048 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  356.106807][ T9156] RAX: ffffffffffffffda RBX: 00007f599b305f80 RCX: 00007f599b1779f9
[  356.114773][ T9156] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ff8000
[  356.122730][ T9156] RBP: 00007f599bec00a0 R08: 0000000000000000 R09: 0000000000000000
[  356.130689][ T9156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  356.138647][ T9156] R13: 000000000000000b R14: 00007f599b305f80 R15: 00007ffeba5fb4b8
[  356.146620][ T9156]  </TASK>
[  356.632502][ T9169] netlink: 'syz.2.939': attribute type 1 has an invalid length.
[  358.505917][ T9198] program syz.2.951 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  358.521266][ T9198] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  358.532177][ T9198] ubi: mtd0 is already attached to ubi0
[  358.581537][ T9204] netlink: 'syz.0.950': attribute type 1 has an invalid length.
[  359.222687][ T9214] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  359.247135][ T9214] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  359.814607][ T9216] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  359.958676][ T9232] fuse: Unknown parameter '0x0000000000000004'
[  360.023795][ T9234] netlink: 'syz.3.958': attribute type 10 has an invalid length.
[  360.241932][ T9218] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  360.688302][ T9218] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  361.872339][ T5237] Bluetooth: hci0: command 0x0406 tx timeout
[  363.774380][ T9242] trusted_key: encrypted_key: master key parameter 'user:' is invalid
[  363.890937][ T9218] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  363.937242][ T9218] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[  364.015688][ T6993] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  364.067191][ T9218] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  364.093225][ T9218] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[  364.170642][ T9218] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  364.207188][ T9218] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  364.283212][ T9218] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  364.313670][ T9218] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  364.424902][ T9275] tmpfs: Bad value for 'nr_inodes'
[  364.538098][ T9218] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  364.616228][ T9218] Bluetooth: hci5: Error when powering off device on rfkill (-4)
[  364.935762][ T9290] 9pnet_fd: Insufficient options for proto=fd
[  364.965626][ T6987] usb 2-1: new high-speed USB device number 32 using dummy_hcd
[  365.039342][ T9218] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  365.087765][ T9218] Bluetooth: hci6: Error when powering off device on rfkill (-4)
[  365.165771][ T6987] usb 2-1: Using ep0 maxpacket: 16
[  365.183601][ T6987] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  365.253429][ T6987] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  365.278964][ T6987] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  365.289932][ T9298] fuse: Unknown parameter '0x0000000000000004'
[  365.364777][ T6987] usb 2-1: New USB device found, idVendor=1e71, idProduct=200d, bcdDevice= 0.00
[  365.389228][ T6987] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  365.440366][ T6987] usb 2-1: config 0 descriptor??
[  365.595122][ T9303] netlink: 'syz.3.972': attribute type 10 has an invalid length.
[  365.717326][ T6987] usbhid 2-1:0.0: can't add hid device: -71
[  365.744016][ T6987] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  365.780034][ T6987] usb 2-1: USB disconnect, device number 32
[  367.413425][ T9335] overlayfs: failed to resolve './bus/file0': -2
[  368.110800][   T29] audit: type=1326 audit(1722845660.843:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9355 comm="syz.2.984" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f599b1779f9 code=0x0
[  369.863779][ T9395] 9pnet_fd: Insufficient options for proto=fd
[  370.949404][    T8] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  371.172388][    T8] usb 5-1: New USB device found, idVendor=59cc, idProduct=980d, bcdDevice=b4.8e
[  371.208061][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  371.246798][    T8] usb 5-1: config 0 descriptor??
[  371.267760][    T8] usb-storage 5-1:0.0: USB Mass Storage device detected
[  371.577539][ T9434] random: crng reseeded on system resumption
[  371.624187][ T5360] usb 5-1: USB disconnect, device number 28
[  371.818344][ T9447] fuse: Bad value for 'fd'
[  372.973688][ T9476] netlink: 140 bytes leftover after parsing attributes in process `syz.0.1011'.
[  372.985707][ T9476] netlink: 'syz.0.1011': attribute type 2 has an invalid length.
[  372.993886][ T9476] netlink: 'syz.0.1011': attribute type 2 has an invalid length.
[  373.008975][ T9476] netlink: 'syz.0.1011': attribute type 4 has an invalid length.
[  373.025349][ T9476] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1011'.
[  373.601895][ T9488] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check.
[  374.461508][ T9513] serio: Serial port pts0
[  376.046903][ T9554] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check.
[  376.697906][ T9568] overlay: Unknown parameter '\'
[  376.772301][ T9566] syzkaller0: entered promiscuous mode
[  376.799957][ T9566] syzkaller0: entered allmulticast mode
[  377.581220][ T9580] input: syz0 as /devices/virtual/input/input44
[  378.916213][ T1262] ieee802154 phy0 wpan0: encryption failed: -22
[  378.922633][ T1262] ieee802154 phy1 wpan1: encryption failed: -22
[  382.109896][ T9604] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1058'.
[  382.701521][ T9624] netlink: 'syz.3.1065': attribute type 4 has an invalid length.
[  383.897609][ T9639] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  383.935890][ T9639] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  384.389046][ T7165] bond0: (slave netdevsim0): Releasing backup interface
[  384.658021][ T7165] dummy0: left allmulticast mode
[  384.671771][ T7165] dummy0: left promiscuous mode
[  384.681729][ T7165] bridge0: port 3(dummy0) entered disabled state
[  384.699958][ T7165] bridge_slave_1: left allmulticast mode
[  384.712447][ T7165] bridge_slave_1: left promiscuous mode
[  384.723944][ T7165] bridge0: port 2(bridge_slave_1) entered disabled state
[  384.784740][ T7165] bridge_slave_0: left allmulticast mode
[  384.790802][ T7165] bridge_slave_0: left promiscuous mode
[  384.806015][ T7165] bridge0: port 1(bridge_slave_0) entered disabled state
[  384.996139][ T6987] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  385.007259][   T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  385.019082][   T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  385.030485][   T54] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  385.060434][   T54] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  385.070330][   T54] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  385.078317][   T54] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  385.111083][ T5237] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  385.119212][ T5237] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  385.137415][ T5237] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  385.147468][ T5237] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  385.159019][ T5237] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  385.166605][ T5237] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  385.205697][ T6987] usb 4-1: Using ep0 maxpacket: 16
[  385.217450][ T6987] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA5, changing to 0x85
[  385.255673][ T6987] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 104
[  385.278785][ T6987] usb 4-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  385.295576][ T6987] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  385.313257][   T29] audit: type=1326 audit(1722845678.043:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9665 comm="syz.2.1085" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f599b1779f9 code=0x7ffc0000
[  385.314190][ T6987] usb 4-1: Product: syz
[  385.340199][ T6987] usb 4-1: Manufacturer: syz
[  385.344827][ T6987] usb 4-1: SerialNumber: syz
[  385.375159][ T6987] usb 4-1: config 0 descriptor??
[  385.399173][ T9655] raw-gadget.3 gadget.3: fail, usb_ep_enable returned -22
[  385.406350][   T29] audit: type=1326 audit(1722845678.043:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9665 comm="syz.2.1085" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f599b1779f9 code=0x7ffc0000
[  385.462620][   T29] audit: type=1326 audit(1722845678.083:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9665 comm="syz.2.1085" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f599b1779f9 code=0x7ffc0000
[  385.466919][ T6987] usb 4-1: can't set config #0, error -71
[  385.515731][   T29] audit: type=1326 audit(1722845678.083:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9665 comm="syz.2.1085" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f599b1779f9 code=0x7ffc0000
[  385.528915][ T6987] usb 4-1: USB disconnect, device number 24
[  385.580985][   T29] audit: type=1326 audit(1722845678.093:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9665 comm="syz.2.1085" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f599b1779f9 code=0x7ffc0000
[  385.643286][   T29] audit: type=1326 audit(1722845678.093:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9665 comm="syz.2.1085" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f599b1779f9 code=0x7ffc0000
[  385.708320][   T29] audit: type=1326 audit(1722845678.093:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9665 comm="syz.2.1085" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f599b16e9a7 code=0x7ffc0000
[  385.770688][   T29] audit: type=1326 audit(1722845678.093:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9665 comm="syz.2.1085" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f599b113349 code=0x7ffc0000
[  385.834125][   T29] audit: type=1326 audit(1722845678.093:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9665 comm="syz.2.1085" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f599b16e9a7 code=0x7ffc0000
[  385.873659][   T29] audit: type=1326 audit(1722845678.093:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9665 comm="syz.2.1085" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f599b113349 code=0x7ffc0000
[  386.241181][ T7165] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  386.282148][ T7165] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  386.312458][ T7165] bond0 (unregistering): Released all slaves
[  386.367276][ T9685] netlink: 'syz.3.1090': attribute type 10 has an invalid length.
[  386.523791][ T9694] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1089'.
[  386.649007][ T7165] IPVS: stopping master sync thread 6588 ...
[  387.221544][ T7165] hsr_slave_0: left promiscuous mode
[  387.232764][ T9713] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  387.241616][ T5237] Bluetooth: hci0: command tx timeout
[  387.248717][ T7165] hsr_slave_1: left promiscuous mode
[  387.251918][ T9713] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  387.326660][ T7165] pimreg (unregistering): left allmulticast mode
[  389.407060][ T9725] warn_alloc: 1 callbacks suppressed
[  389.407083][ T9725] syz.0.1098: vmalloc error: size 536870912, failed to allocated page array size 1048576, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[  389.424809][ T5237] Bluetooth: hci0: command tx timeout
[  389.430552][ T9725] CPU: 0 UID: 0 PID: 9725 Comm: syz.0.1098 Not tainted 6.11.0-rc1-syzkaller-00334-ga5dbd76a8942 #0
[  389.430578][ T9725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  389.430589][ T9725] Call Trace:
[  389.459922][ T9725]  <TASK>
[  389.462837][ T9725]  dump_stack_lvl+0x241/0x360
[  389.467509][ T9725]  ? __pfx_dump_stack_lvl+0x10/0x10
[  389.472696][ T9725]  ? __pfx__printk+0x10/0x10
[  389.477276][ T9725]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[  389.483673][ T9725]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[  389.490158][ T9725]  warn_alloc+0x278/0x410
[  389.494477][ T9725]  ? __pfx_warn_alloc+0x10/0x10
[  389.499312][ T9725]  ? translate_table+0x196/0x21f0
[  389.504319][ T9725]  ? __get_vm_area_node+0x23d/0x270
[  389.509504][ T9725]  __vmalloc_node_range_noprof+0x69f/0x1460
[  389.515382][ T9725]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  389.521101][ T9725]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  389.527418][ T9725]  ? rcu_is_watching+0x15/0xb0
[  389.532167][ T9725]  ? trace_kmalloc+0x1f/0xd0
[  389.536739][ T9725]  ? __kmalloc_node_noprof+0x247/0x440
[  389.542186][ T9725]  ? __kvmalloc_node_noprof+0x72/0x190
[  389.547630][ T9725]  __kvmalloc_node_noprof+0x142/0x190
[  389.552988][ T9725]  ? translate_table+0x196/0x21f0
[  389.558015][ T9725]  translate_table+0x196/0x21f0
[  389.562855][ T9725]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  389.568832][ T9725]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  389.575147][ T9725]  ? irqentry_exit+0x63/0x90
[  389.579724][ T9725]  ? lockdep_hardirqs_on+0x99/0x150
[  389.584907][ T9725]  ? __pfx_translate_table+0x10/0x10
[  389.590179][ T9725]  ? _copy_from_user+0x50/0xe0
[  389.594928][ T9725]  ? __pfx___sanitizer_cov_trace_cmp8+0x10/0x10
[  389.601155][ T9725]  ? _copy_from_user+0xa6/0xe0
[  389.605907][ T9725]  ? copy_from_sockptr_offset+0x6b/0xb0
[  389.611437][ T9725]  do_arpt_set_ctl+0x101c/0x1650
[  389.616367][ T9725]  ? __pfx_do_arpt_set_ctl+0x10/0x10
[  389.621638][ T9725]  ? __pfx_bpf_trace_run2+0x10/0x10
[  389.626906][ T9725]  ? nf_setsockopt+0x240/0x2c0
[  389.631657][ T9725]  ? __pfx_lock_release+0x10/0x10
[  389.636672][ T9725]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  389.642641][ T9725]  ? __mutex_lock+0x2ef/0xd70
[  389.647306][ T9725]  ? __mutex_unlock_slowpath+0x21d/0x750
[  389.652927][ T9725]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  389.658894][ T9725]  ? lockdep_hardirqs_on+0x99/0x150
[  389.664079][ T9725]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  389.669981][ T9725]  ? module_put+0x13a/0x2d0
[  389.674490][ T9725]  nf_setsockopt+0x295/0x2c0
[  389.679082][ T9725]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  389.684966][ T9725]  do_sock_setsockopt+0x3af/0x720
[  389.689982][ T9725]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  389.695511][ T9725]  ? __fget_files+0x29/0x470
[  389.700098][ T9725]  ? __fget_files+0x3f6/0x470
[  389.704761][ T9725]  __sys_setsockopt+0x1ae/0x250
[  389.709598][ T9725]  __x64_sys_setsockopt+0xb5/0xd0
[  389.714605][ T9725]  do_syscall_64+0xf3/0x230
[  389.719096][ T9725]  ? clear_bhb_loop+0x35/0x90
[  389.723752][ T9725]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  389.729631][ T9725] RIP: 0033:0x7fd76b5779f9
[  389.734029][ T9725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  389.753622][ T9725] RSP: 002b:00007fd76c312048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  389.762022][ T9725] RAX: ffffffffffffffda RBX: 00007fd76b706130 RCX: 00007fd76b5779f9
[  389.769993][ T9725] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000007
[  389.777964][ T9725] RBP: 00007fd76b5e58ee R08: 0000000000000450 R09: 0000000000000000
[  389.785923][ T9725] R10: 0000000020000500 R11: 0000000000000246 R12: 0000000000000000
[  389.793962][ T9725] R13: 000000000000006e R14: 00007fd76b706130 R15: 00007ffca3403ea8
[  389.802013][ T9725]  </TASK>
[  389.805197][ T9725] Mem-Info:
[  389.808332][ T9725] active_anon:3137 inactive_anon:8370 isolated_anon:0
[  389.808332][ T9725]  active_file:8663 inactive_file:41937 isolated_file:0
[  389.808332][ T9725]  unevictable:768 dirty:215 writeback:0
[  389.808332][ T9725]  slab_reclaimable:9596 slab_unreclaimable:99236
[  389.808332][ T9725]  mapped:32483 shmem:9139 pagetables:819
[  389.808332][ T9725]  sec_pagetables:0 bounce:0
[  389.808332][ T9725]  kernel_misc_reclaimable:0
[  389.808332][ T9725]  free:1324857 free_pcp:7274 free_cma:0
[  389.853509][ T9725] Node 0 active_anon:12548kB inactive_anon:33480kB active_file:34528kB inactive_file:167748kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:129844kB dirty:860kB writeback:0kB shmem:35020kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11840kB pagetables:3276kB sec_pagetables:0kB all_unreclaimable? no
[  389.886226][ T9725] Node 1 active_anon:0kB inactive_anon:0kB active_file:124kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:88kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  389.916464][ T9725] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  389.943489][ T9725] lowmem_reserve[]: 0 2563 2565 0 0
[  389.948738][ T9725] Node 0 DMA32 free:1331904kB boost:0kB min:35036kB low:43792kB high:52548kB reserved_highatomic:0KB active_anon:12544kB inactive_anon:33436kB active_file:33016kB inactive_file:167684kB unevictable:1536kB writepending:856kB present:3129332kB managed:2653292kB mlocked:0kB bounce:0kB free_pcp:27036kB local_pcp:18232kB free_cma:0kB
[  389.979767][ T9725] lowmem_reserve[]: 0 0 1 0 0
[  389.984457][ T9725] Node 0 Normal free:8kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:4kB inactive_anon:44kB active_file:1512kB inactive_file:64kB unevictable:0kB writepending:4kB present:1048576kB managed:1640kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  390.011661][ T9725] lowmem_reserve[]: 0 0 0 0 0
[  390.016377][ T9725] Node 1 Normal free:3952156kB boost:0kB min:54844kB low:68552kB high:82260kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:124kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194304kB managed:4109120kB mlocked:0kB bounce:0kB free_pcp:2052kB local_pcp:2052kB free_cma:0kB
[  390.045669][ T9725] lowmem_reserve[]: 0 0 0 0 0
[  390.050355][ T9725] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  390.062952][ T9725] Node 0 DMA32: 3*4kB (UE) 11*8kB (ME) 20*16kB (E) 19*32kB (ME) 283*64kB (ME) 60*128kB (ME) 28*256kB (UME) 11*512kB (M) 32*1024kB (UME) 25*2048kB (UM) 295*4096kB (UM) = 1331908kB
[  390.080725][ T9725] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[  390.092549][ T9725] Node 1 Normal: 9*4kB (UM) 7*8kB (UM) 6*16kB (UM) 7*32kB (UM) 4*64kB (UM) 5*128kB (UM) 3*256kB (UM) 5*512kB (UM) 5*1024kB (UM) 5*2048kB (UM) 960*4096kB (M) = 3952156kB
[  390.109446][ T9725] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  390.118985][ T9725] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  390.128264][ T9725] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  390.137815][ T9725] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  390.147097][ T9725] 59739 total pagecache pages
[  390.151750][ T9725] 0 pages in swap cache
[  390.155895][ T9725] Free swap  = 124692kB
[  390.160021][ T9725] Total swap = 124996kB
[  390.164160][ T9725] 2097051 pages RAM
[  390.167961][ T9725] 0 pages HighMem/MovableOnly
[  390.172610][ T9725] 402198 pages reserved
[  390.176770][ T9725] 0 pages cma reserved
[  390.688485][ T9729] fuse: Unknown parameter '0x0000000000000004'
[  390.853506][ T9727] ubi: mtd0 is already attached to ubi0
[  391.279902][ T9735] fuse: Unknown parameter 'use00000000000000000000'
[  391.465632][ T5237] Bluetooth: hci0: command tx timeout
[  391.682161][ T7165] team0 (unregistering): Port device team_slave_1 removed
[  391.773640][ T7165] team0 (unregistering): Port device team_slave_0 removed
[  392.729574][ T9661] chnl_net:caif_netlink_parms(): no params data found
[  392.817538][ T9742] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1104'.
[  393.387951][ T9661] bridge0: port 1(bridge_slave_0) entered blocking state
[  393.401807][ T9661] bridge0: port 1(bridge_slave_0) entered disabled state
[  393.422588][ T9661] bridge_slave_0: entered allmulticast mode
[  393.437397][ T9661] bridge_slave_0: entered promiscuous mode
[  393.438520][ T9775] fuse: Unknown parameter 'use00000000000000000000'
[  393.459912][ T7165] IPVS: stop unused estimator thread 0...
[  393.479156][ T9661] bridge0: port 2(bridge_slave_1) entered blocking state
[  393.612725][ T9661] bridge0: port 2(bridge_slave_1) entered disabled state
[  393.619938][ T5237] Bluetooth: hci0: command tx timeout
[  393.713003][ T9661] bridge_slave_1: entered allmulticast mode
[  393.740229][ T9661] bridge_slave_1: entered promiscuous mode
[  393.843905][ T9661] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  393.874815][ T9661] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  393.957644][ T9661] team0: Port device team_slave_0 added
[  393.974850][ T9661] team0: Port device team_slave_1 added
[  394.057644][ T9784] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  394.125798][ T9784] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  394.132700][ T9661] batman_adv: batadv0: Adding interface: batadv_slave_0
[  394.144608][ T9661] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  394.181121][ T9661] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  394.198497][ T9661] batman_adv: batadv0: Adding interface: batadv_slave_1
[  394.218636][ T9661] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  394.293274][ T9661] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  394.315650][ T9789] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1116'.
[  394.329072][ T9789] batman_adv: batadv0: Removing interface: batadv_slave_0
[  394.338028][ T9789] batman_adv: batadv0: Removing interface: batadv_slave_1
[  394.533652][ T9661] hsr_slave_0: entered promiscuous mode
[  394.547028][ T9661] hsr_slave_1: entered promiscuous mode
[  395.008501][   T35] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  395.159253][   T35] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  395.170984][ T9803] fuse: Unknown parameter 'use00000000000000000000'
[  395.634655][   T54] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  395.649065][   T54] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  395.664875][   T54] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  395.686992][   T54] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  395.695042][   T54] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  395.702933][   T54] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  395.918151][   T35] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  396.038264][   T35] bond0: (slave netdevsim0): Releasing backup interface
[  396.079002][   T35] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  396.389411][ T9825] netlink: 'syz.0.1128': attribute type 1 has an invalid length.
[  397.088699][ T9829] tmpfs: Bad value for 'nr_inodes'
[  397.249755][ T9831] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  397.278838][   T35] dummy0: left allmulticast mode
[  397.283838][   T35] dummy0: left promiscuous mode
[  397.290428][ T9831] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  397.314716][   T35] bridge0: port 3(dummy0) entered disabled state
[  397.362756][   T35] bridge_slave_1: left allmulticast mode
[  397.386320][   T35] bridge_slave_1: left promiscuous mode
[  397.396805][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[  397.421075][   T35] bridge_slave_0: left allmulticast mode
[  397.445705][   T35] bridge_slave_0: left promiscuous mode
[  397.466304][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[  397.678035][ T9837] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  397.698026][ T9837] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  397.785650][ T5237] Bluetooth: hci5: command tx timeout
[  398.517480][   T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  398.542978][   T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  398.569208][   T35] bond0 (unregistering): Released all slaves
[  398.700495][   T35] IPVS: stopping master sync thread 8372 ...
[  398.716102][ T9812] chnl_net:caif_netlink_parms(): no params data found
[  399.137914][ T9661] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  399.337278][ T9661] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  399.366810][   T35] hsr_slave_0: left promiscuous mode
[  399.596610][   T35] hsr_slave_1: left promiscuous mode
[  402.011689][ T9845] warn_alloc: 1 callbacks suppressed
[  402.011711][ T9845] syz.2.1132: vmalloc error: size 536870912, failed to allocated page array size 1048576, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz2,mems_allowed=0-1
[  402.035654][ T9845] CPU: 1 UID: 0 PID: 9845 Comm: syz.2.1132 Not tainted 6.11.0-rc1-syzkaller-00334-ga5dbd76a8942 #0
[  402.046349][ T9845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  402.056395][ T9845] Call Trace:
[  402.059658][ T9845]  <TASK>
[  402.062573][ T9845]  dump_stack_lvl+0x241/0x360
[  402.067246][ T9845]  ? __pfx_dump_stack_lvl+0x10/0x10
[  402.072430][ T9845]  ? __pfx__printk+0x10/0x10
[  402.077013][ T9845]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[  402.083435][ T9845]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[  402.089937][ T9845]  warn_alloc+0x278/0x410
[  402.094266][ T9845]  ? __pfx_warn_alloc+0x10/0x10
[  402.099111][ T9845]  ? translate_table+0x196/0x21f0
[  402.104122][ T9845]  ? __get_vm_area_node+0x23d/0x270
[  402.109319][ T9845]  __vmalloc_node_range_noprof+0x69f/0x1460
[  402.115200][ T9845]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  402.120918][ T9845]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  402.127324][ T9845]  ? rcu_is_watching+0x15/0xb0
[  402.132074][ T9845]  ? trace_kmalloc+0x1f/0xd0
[  402.136653][ T9845]  ? __kmalloc_node_noprof+0x247/0x440
[  402.142118][ T9845]  ? __kvmalloc_node_noprof+0x72/0x190
[  402.147568][ T9845]  __kvmalloc_node_noprof+0x142/0x190
[  402.152930][ T9845]  ? translate_table+0x196/0x21f0
[  402.157959][ T9845]  translate_table+0x196/0x21f0
[  402.162807][ T9845]  ? __pfx___might_resched+0x10/0x10
[  402.168096][ T9845]  ? __might_fault+0xaa/0x120
[  402.172772][ T9845]  ? __pfx_translate_table+0x10/0x10
[  402.178058][ T9845]  ? __phys_addr+0x99/0x170
[  402.182548][ T9845]  ? __sanitizer_cov_trace_pc+0x5d/0x70
[  402.188089][ T9845]  ? __might_fault+0xaa/0x120
[  402.192754][ T9845]  ? __might_fault+0xc6/0x120
[  402.197414][ T9845]  ? _copy_from_user+0xa6/0xe0
[  402.202162][ T9845]  ? copy_from_sockptr_offset+0x6b/0xb0
[  402.207692][ T9845]  do_arpt_set_ctl+0x101c/0x1650
[  402.212619][ T9845]  ? __pfx_do_arpt_set_ctl+0x10/0x10
[  402.217891][ T9845]  ? __pfx_bpf_trace_run2+0x10/0x10
[  402.223072][ T9845]  ? nf_setsockopt+0x240/0x2c0
[  402.227823][ T9845]  ? __pfx_lock_release+0x10/0x10
[  402.232836][ T9845]  ? __mutex_lock+0x303/0xd70
[  402.237503][ T9845]  ? __mutex_unlock_slowpath+0x21d/0x750
[  402.243120][ T9845]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  402.248482][ T9845]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  402.254451][ T9845]  ? module_put+0x13a/0x2d0
[  402.258939][ T9845]  nf_setsockopt+0x295/0x2c0
[  402.263523][ T9845]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  402.269405][ T9845]  do_sock_setsockopt+0x3af/0x720
[  402.274418][ T9845]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  402.279944][ T9845]  ? __fget_files+0x29/0x470
[  402.284519][ T9845]  ? __fget_files+0x3f6/0x470
[  402.289207][ T9845]  __sys_setsockopt+0x1ae/0x250
[  402.294061][ T9845]  __x64_sys_setsockopt+0xb5/0xd0
[  402.299085][ T9845]  do_syscall_64+0xf3/0x230
[  402.303579][ T9845]  ? clear_bhb_loop+0x35/0x90
[  402.308244][ T9845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  402.314127][ T9845] RIP: 0033:0x7f599b1779f9
[  402.318528][ T9845] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  402.338114][ T9845] RSP: 002b:00007f599be7e048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  402.346515][ T9845] RAX: ffffffffffffffda RBX: 00007f599b306130 RCX: 00007f599b1779f9
[  402.354467][ T9845] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000007
[  402.362423][ T9845] RBP: 00007f599b1e58ee R08: 0000000000000450 R09: 0000000000000000
[  402.370379][ T9845] R10: 0000000020000500 R11: 0000000000000246 R12: 0000000000000000
[  402.378332][ T9845] R13: 000000000000006e R14: 00007f599b306130 R15: 00007ffeba5fb4b8
[  402.386299][ T9845]  </TASK>
[  402.389487][ T9845] Mem-Info:
[  402.392584][ T9845] active_anon:778 inactive_anon:6860 isolated_anon:0
[  402.392584][ T9845]  active_file:8702 inactive_file:41903 isolated_file:0
[  402.392584][ T9845]  unevictable:768 dirty:192 writeback:0
[  402.392584][ T9845]  slab_reclaimable:9702 slab_unreclaimable:98652
[  402.392584][ T9845]  mapped:32089 shmem:5133 pagetables:756
[  402.392584][ T9845]  sec_pagetables:5 bounce:0
[  402.392584][ T9845]  kernel_misc_reclaimable:0
[  402.392584][ T9845]  free:1329839 free_pcp:6273 free_cma:0
[  402.437897][ T9845] Node 0 active_anon:3112kB inactive_anon:27440kB active_file:34684kB inactive_file:167612kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:128312kB dirty:768kB writeback:0kB shmem:18996kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11720kB pagetables:3024kB sec_pagetables:20kB all_unreclaimable? no
[  402.470709][ T9845] Node 1 active_anon:0kB inactive_anon:0kB active_file:124kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:44kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  402.501098][ T9845] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  402.528169][ T9845] lowmem_reserve[]: 0 2563 2565 0 0
[  402.533383][ T9845] Node 0 DMA32 free:1351832kB boost:0kB min:35036kB low:43792kB high:52548kB reserved_highatomic:0KB active_anon:3108kB inactive_anon:27396kB active_file:33172kB inactive_file:167548kB unevictable:1536kB writepending:764kB present:3129332kB managed:2653292kB mlocked:0kB bounce:0kB free_pcp:22960kB local_pcp:6156kB free_cma:0kB
[  402.564092][ T9845] lowmem_reserve[]: 0 0 1 0 0
[  402.568836][ T9845] Node 0 Normal free:8kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:4kB inactive_anon:44kB active_file:1512kB inactive_file:64kB unevictable:0kB writepending:4kB present:1048576kB managed:1640kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  402.596170][ T9845] lowmem_reserve[]: 0 0 0 0 0
[  402.600862][ T9845] Node 1 Normal free:3952156kB boost:0kB min:54844kB low:68552kB high:82260kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:124kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194304kB managed:4109120kB mlocked:0kB bounce:0kB free_pcp:2056kB local_pcp:0kB free_cma:0kB
[  402.630117][ T9845] lowmem_reserve[]: 0 0 0 0 0
[  402.634803][ T9845] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  402.647437][ T9845] Node 0 DMA32: 2*4kB (E) 16*8kB (E) 6*16kB (UME) 318*32kB (UME) 413*64kB (UME) 62*128kB (ME) 27*256kB (UME) 11*512kB (UM) 48*1024kB (UME) 16*2048kB (UM) 296*4096kB (UM) = 1351656kB
[  402.665482][ T9845] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[  402.677417][ T9845] Node 1 Normal: 9*4kB (UM) 7*8kB (UM) 6*16kB (UM) 7*32kB (UM) 4*64kB (UM) 5*128kB (UM) 3*256kB (UM) 5*512kB (UM) 5*1024kB (UM) 5*2048kB (UM) 960*4096kB (M) = 3952156kB
[  402.694342][ T9845] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  402.703912][ T9845] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  402.713213][ T9845] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  402.722867][ T9845] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  402.732607][ T9845] 55738 total pagecache pages
[  402.737290][ T9845] 0 pages in swap cache
[  402.741426][ T9845] Free swap  = 124692kB
[  402.745612][ T9845] Total swap = 124996kB
[  402.749746][ T9845] 2097051 pages RAM
[  402.753541][ T9845] 0 pages HighMem/MovableOnly
[  402.758224][ T9845] 402198 pages reserved
[  402.762353][ T9845] 0 pages cma reserved
[  403.027862][ T5237] Bluetooth: hci5: command tx timeout
[  403.303865][   T35] veth1_macvtap: left promiscuous mode
[  403.319967][   T35] veth0_macvtap: left promiscuous mode
[  403.336183][   T35] veth1_vlan: left promiscuous mode
[  403.341542][   T35] veth0_vlan: left promiscuous mode
[  403.565949][ T5327] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  403.765724][ T5327] usb 4-1: Using ep0 maxpacket: 16
[  403.787201][ T5327] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  403.821774][ T5327] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  403.852988][ T5327] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  403.886947][ T5327] usb 4-1: New USB device found, idVendor=1e71, idProduct=200d, bcdDevice= 0.00
[  403.915586][ T5327] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  403.967312][ T5327] usb 4-1: config 0 descriptor??
[  404.227044][ T5327] usbhid 4-1:0.0: can't add hid device: -71
[  404.256132][ T5327] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  404.289853][ T5327] usb 4-1: USB disconnect, device number 25
[  405.126634][   T54] Bluetooth: hci5: command tx timeout
[  405.535161][   T35] team0 (unregistering): Port device team_slave_1 removed
[  405.679508][   T35] team0 (unregistering): Port device team_slave_0 removed
[  406.322002][ T9871] netlink: 'syz.0.1139': attribute type 1 has an invalid length.
[  407.055279][ T9661] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  407.079684][ T9859] netlink: 'syz.2.1136': attribute type 10 has an invalid length.
[  407.186458][   T54] Bluetooth: hci5: command tx timeout
[  407.216374][ T9812] bridge0: port 1(bridge_slave_0) entered blocking state
[  407.223534][ T9812] bridge0: port 1(bridge_slave_0) entered disabled state
[  407.264982][ T9812] bridge_slave_0: entered allmulticast mode
[  407.291345][ T9812] bridge_slave_0: entered promiscuous mode
[  407.305149][ T9812] bridge0: port 2(bridge_slave_1) entered blocking state
[  407.317709][ T9812] bridge0: port 2(bridge_slave_1) entered disabled state
[  407.324983][ T9812] bridge_slave_1: entered allmulticast mode
[  407.333540][ T9812] bridge_slave_1: entered promiscuous mode
[  407.351818][ T9661] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  407.374968][ T9878] tmpfs: Bad value for 'nr_inodes'
[  407.386431][ T9876] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  407.590501][ T9812] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  407.653256][ T9812] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  407.796718][ T9886] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  407.805430][ T9886] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  411.481104][ T9812] team0: Port device team_slave_0 added
[  411.538974][ T9812] team0: Port device team_slave_1 added
[  412.751071][ T9812] batman_adv: batadv0: Adding interface: batadv_slave_0
[  412.766694][ T9812] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  412.833375][ T9812] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  412.876184][ T9812] batman_adv: batadv0: Adding interface: batadv_slave_1
[  412.909706][ T9812] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  412.936157][ T9812] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  413.044187][ T9905] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  413.061226][ T9661] 8021q: adding VLAN 0 to HW filter on device bond0
[  413.089037][ T9905] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  413.568174][ T9812] hsr_slave_0: entered promiscuous mode
[  413.575941][ T9812] hsr_slave_1: entered promiscuous mode
[  413.592393][ T9812] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  413.610176][ T9812] Cannot create hsr debugfs directory
[  417.850070][ T9661] 8021q: adding VLAN 0 to HW filter on device team0
[  417.970242][ T6993] bridge0: port 1(bridge_slave_0) entered blocking state
[  417.977460][ T6993] bridge0: port 1(bridge_slave_0) entered forwarding state
[  418.008077][ T6993] bridge0: port 2(bridge_slave_1) entered blocking state
[  418.015273][ T6993] bridge0: port 2(bridge_slave_1) entered forwarding state
[  418.127968][ T9913] netlink: 'syz.2.1152': attribute type 10 has an invalid length.
[  418.246010][ T9919] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  418.775955][ T9932] tmpfs: Bad value for 'nr_inodes'
[  418.819633][ T9661] 8021q: adding VLAN 0 to HW filter on device batadv0
[  419.114169][ T9661] veth0_vlan: entered promiscuous mode
[  419.182931][ T9661] veth1_vlan: entered promiscuous mode
[  419.262024][ T9812] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  419.350767][ T9812] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  419.416779][ T9812] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  419.517777][ T9812] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  419.530815][ T9941] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  419.572373][ T9941] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  419.656899][ T9661] veth0_macvtap: entered promiscuous mode
[  419.732080][ T9661] veth1_macvtap: entered promiscuous mode
[  419.834188][ T9661] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  419.869335][ T9661] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  419.898059][ T9661] batman_adv: batadv0: Interface activated: batadv_slave_0
[  419.977596][ T9661] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  420.006207][ T9661] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  420.042483][ T9661] batman_adv: batadv0: Interface activated: batadv_slave_1
[  420.095696][ T9661] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  420.116842][ T9661] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  420.136114][ T9661] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  420.156306][ T9661] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  420.284955][ T9812] 8021q: adding VLAN 0 to HW filter on device bond0
[  420.444625][ T9812] 8021q: adding VLAN 0 to HW filter on device team0
[  420.533478][ T5327] bridge0: port 1(bridge_slave_0) entered blocking state
[  420.540692][ T5327] bridge0: port 1(bridge_slave_0) entered forwarding state
[  420.616869][ T5327] bridge0: port 2(bridge_slave_1) entered blocking state
[  420.624171][ T5327] bridge0: port 2(bridge_slave_1) entered forwarding state
[  420.666769][ T2934] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  420.674623][ T2934] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  421.853622][ T9812] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  422.759764][ T7136] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  422.794252][ T7136] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  423.100033][ T9812] 8021q: adding VLAN 0 to HW filter on device batadv0
[  423.235887][   T29] kauditd_printk_skb: 71 callbacks suppressed
[  423.235904][   T29] audit: type=1326 audit(1722845715.973:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9973 comm="syz.3.1170" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6f529779f9 code=0x0
[  425.772906][T10013] warn_alloc: 1 callbacks suppressed
[  425.772929][T10013] syz.1.1177: vmalloc error: size 536870912, failed to allocated page array size 1048576, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1
[  425.798245][T10013] CPU: 1 UID: 0 PID: 10013 Comm: syz.1.1177 Not tainted 6.11.0-rc1-syzkaller-00334-ga5dbd76a8942 #0
[  425.809040][T10013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  425.819119][T10013] Call Trace:
[  425.822678][T10013]  <TASK>
[  425.825622][T10013]  dump_stack_lvl+0x241/0x360
[  425.830337][T10013]  ? __pfx_dump_stack_lvl+0x10/0x10
[  425.833156][ T9812] veth0_vlan: entered promiscuous mode
[  425.835547][T10013]  ? __pfx__printk+0x10/0x10
[  425.835583][T10013]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[  425.835606][T10013]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[  425.851847][ T9812] veth1_vlan: entered promiscuous mode
[  425.852014][T10013]  warn_alloc+0x278/0x410
[  425.868325][T10013]  ? __pfx_warn_alloc+0x10/0x10
[  425.873204][T10013]  ? translate_table+0x196/0x21f0
[  425.878236][T10013]  ? __get_vm_area_node+0x23d/0x270
[  425.883439][T10013]  __vmalloc_node_range_noprof+0x69f/0x1460
[  425.889329][T10013]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  425.895062][T10013]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  425.901388][T10013]  ? rcu_is_watching+0x15/0xb0
[  425.906152][T10013]  ? trace_kmalloc+0x1f/0xd0
[  425.910741][T10013]  ? __kmalloc_node_noprof+0x247/0x440
[  425.916195][T10013]  ? __kvmalloc_node_noprof+0x72/0x190
[  425.921647][T10013]  __kvmalloc_node_noprof+0x142/0x190
[  425.927010][T10013]  ? translate_table+0x196/0x21f0
[  425.932029][T10013]  translate_table+0x196/0x21f0
[  425.936886][T10013]  ? __pfx___might_resched+0x10/0x10
[  425.942175][T10013]  ? __might_fault+0xaa/0x120
[  425.946873][T10013]  ? __pfx_translate_table+0x10/0x10
[  425.952154][T10013]  ? __might_fault+0xaa/0x120
[  425.956823][T10013]  ? __might_fault+0xc6/0x120
[  425.961493][T10013]  ? _copy_from_user+0xa6/0xe0
[  425.966251][T10013]  ? copy_from_sockptr_offset+0x6b/0xb0
[  425.971790][T10013]  do_arpt_set_ctl+0x101c/0x1650
[  425.976725][T10013]  ? __pfx_do_arpt_set_ctl+0x10/0x10
[  425.982088][T10013]  ? __pfx_bpf_trace_run2+0x10/0x10
[  425.987365][T10013]  ? nf_setsockopt+0x240/0x2c0
[  425.992209][T10013]  ? __pfx_lock_release+0x10/0x10
[  425.997235][T10013]  ? __mutex_lock+0x2ef/0xd70
[  426.001907][T10013]  ? __mutex_unlock_slowpath+0x21d/0x750
[  426.007538][T10013]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  426.012906][T10013]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  426.018888][T10013]  ? module_put+0x13a/0x2d0
[  426.023383][T10013]  nf_setsockopt+0x295/0x2c0
[  426.027999][T10013]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  426.033891][T10013]  do_sock_setsockopt+0x3af/0x720
[  426.038911][T10013]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  426.044444][T10013]  ? __fget_files+0x29/0x470
[  426.049027][T10013]  ? __fget_files+0x3f6/0x470
[  426.053706][T10013]  __sys_setsockopt+0x1ae/0x250
[  426.058559][T10013]  __x64_sys_setsockopt+0xb5/0xd0
[  426.063580][T10013]  do_syscall_64+0xf3/0x230
[  426.068086][T10013]  ? clear_bhb_loop+0x35/0x90
[  426.072757][T10013]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.078649][T10013] RIP: 0033:0x7f0ef3b779f9
[  426.083056][T10013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  426.102653][T10013] RSP: 002b:00007f0ef48ae048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  426.111061][T10013] RAX: ffffffffffffffda RBX: 00007f0ef3d06130 RCX: 00007f0ef3b779f9
[  426.119024][T10013] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000007
[  426.126987][T10013] RBP: 00007f0ef3be58ee R08: 0000000000000450 R09: 0000000000000000
[  426.134948][T10013] R10: 0000000020000500 R11: 0000000000000246 R12: 0000000000000000
[  426.142944][T10013] R13: 000000000000006e R14: 00007f0ef3d06130 R15: 00007ffc424b83d8
[  426.150925][T10013]  </TASK>
[  426.155932][T10013] Mem-Info:
[  426.159086][T10013] active_anon:767 inactive_anon:6616 isolated_anon:0
[  426.159086][T10013]  active_file:8715 inactive_file:41903 isolated_file:0
[  426.159086][T10013]  unevictable:768 dirty:137 writeback:0
[  426.159086][T10013]  slab_reclaimable:9958 slab_unreclaimable:98277
[  426.159086][T10013]  mapped:32105 shmem:5133 pagetables:758
[  426.159086][T10013]  sec_pagetables:0 bounce:0
[  426.159086][T10013]  kernel_misc_reclaimable:0
[  426.159086][T10013]  free:1334771 free_pcp:2752 free_cma:0
[  426.207723][T10013] Node 0 active_anon:3068kB inactive_anon:26464kB active_file:34736kB inactive_file:167612kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:128376kB dirty:548kB writeback:0kB shmem:18996kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11744kB pagetables:3032kB sec_pagetables:0kB all_unreclaimable? no
[  426.240672][T10013] Node 1 active_anon:0kB inactive_anon:0kB active_file:124kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:44kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  426.244532][ T9812] veth0_macvtap: entered promiscuous mode
[  426.271698][T10013] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  426.304301][T10013] lowmem_reserve[]: 0 2563 2565 0 0
[  426.309598][T10013] Node 0 DMA32 free:1370920kB boost:0kB min:35036kB low:43792kB high:52548kB reserved_highatomic:0KB active_anon:3064kB inactive_anon:26620kB active_file:33224kB inactive_file:167548kB unevictable:1536kB writepending:548kB present:3129332kB managed:2653292kB mlocked:0kB bounce:0kB free_pcp:8976kB local_pcp:7472kB free_cma:0kB
[  426.340237][T10013] lowmem_reserve[]: 0 0 1 0 0
[  426.344929][T10013] Node 0 Normal free:8kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:4kB inactive_anon:44kB active_file:1512kB inactive_file:64kB unevictable:0kB writepending:0kB present:1048576kB managed:1640kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  426.372180][T10013] lowmem_reserve[]: 0 0 0 0 0
[  426.376918][T10013] Node 1 Normal free:3952156kB boost:0kB min:54844kB low:68552kB high:82260kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:124kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194304kB managed:4109120kB mlocked:0kB bounce:0kB free_pcp:2056kB local_pcp:0kB free_cma:0kB
[  426.406370][T10013] lowmem_reserve[]: 0 0 0 0 0
[  426.411079][T10013] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  426.423726][T10013] Node 0 DMA32: 3*4kB (UE) 776*8kB (M) 320*16kB (M) 488*32kB (ME) 410*64kB (ME) 62*128kB (UM) 26*256kB (ME) 81*512kB (UM) 46*1024kB (UM) 19*2048kB (UM) 287*4096kB (UM) = 1370828kB
[  426.441616][T10013] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[  426.453542][T10013] Node 1 Normal: 9*4kB (UM) 7*8kB (UM) 6*16kB (UM) 7*32kB (UM) 4*64kB (UM) 5*128kB (UM) 3*256kB (UM) 5*512kB (UM) 5*1024kB (UM) 5*2048kB (UM) 960*4096kB (M) = 3952156kB
[  426.470589][T10013] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  426.480136][T10013] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  426.489437][T10013] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  426.499000][T10013] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  426.509138][T10013] 55751 total pagecache pages
[  426.513797][T10013] 0 pages in swap cache
[  426.517968][T10013] Free swap  = 124692kB
[  426.522102][T10013] Total swap = 124996kB
[  426.526317][T10013] 2097051 pages RAM
[  426.530100][T10013] 0 pages HighMem/MovableOnly
[  426.534834][T10013] 402198 pages reserved
[  426.538987][T10013] 0 pages cma reserved
[  426.872263][ T9812] veth1_macvtap: entered promiscuous mode
[  427.179835][ T9812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  427.212908][ T9812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  427.270097][ T9812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  427.455562][ T9812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  428.008394][ T9812] batman_adv: batadv0: Interface activated: batadv_slave_0
[  428.270633][ T9812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  428.327882][ T9812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  428.405693][ T9812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  428.425815][ T9812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  428.448023][ T9812] batman_adv: batadv0: Interface activated: batadv_slave_1
[  428.482869][ T9812] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  428.509196][ T9812] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  428.529002][ T9812] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  428.555692][ T9812] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  428.837128][ T2934] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  428.845072][ T2934] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  428.917251][   T29] audit: type=1326 audit(1722845721.643:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10035 comm="syz.1.1184" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0ef3b779f9 code=0x0
[  428.969630][ T7165] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  429.005661][ T7165] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  429.673101][ T2934] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  434.181615][ T2934] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  434.306095][T10068] tmpfs: Bad value for 'nr_inodes'
[  434.917696][ T2934] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  434.987800][ T5237] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  435.000700][ T5237] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  435.051839][ T5237] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  435.079480][ T5237] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  435.087344][ T5237] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  435.096899][ T5237] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  435.319431][ T6986] usb 3-1: USB disconnect, device number 2
[  435.329565][ T6986] option 3-1:0.0: device disconnected
[  435.365018][ T2934] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  435.531620][ T5237] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  435.541413][ T5237] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  435.575233][ T5237] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  435.592953][ T5237] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  435.601068][ T5237] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  435.608577][ T5237] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  436.118830][ T2934] bridge_slave_1: left allmulticast mode
[  436.148877][ T2934] bridge_slave_1: left promiscuous mode
[  436.158682][ T2934] bridge0: port 2(bridge_slave_1) entered disabled state
[  436.190263][ T2934] bridge_slave_0: left allmulticast mode
[  436.204012][ T2934] bridge_slave_0: left promiscuous mode
[  436.221421][ T2934] bridge0: port 1(bridge_slave_0) entered disabled state
[  437.230893][   T54] Bluetooth: hci3: command tx timeout
[  437.707499][   T54] Bluetooth: hci5: command tx timeout
[  437.854504][ T2934] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  437.877446][ T2934] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  437.905739][ T2934] bond0 (unregistering): Released all slaves
[  437.963798][T10098] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1200'.
[  440.746386][   T54] Bluetooth: hci3: command tx timeout
[  440.751844][   T54] Bluetooth: hci5: command tx timeout
[  441.131459][T10115] warn_alloc: 1 callbacks suppressed
[  441.131476][T10115] syz.1.1203: vmalloc error: size 536870912, failed to allocated page array size 1048576, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1
[  441.155020][T10115] CPU: 0 UID: 0 PID: 10115 Comm: syz.1.1203 Not tainted 6.11.0-rc1-syzkaller-00334-ga5dbd76a8942 #0
[  441.165773][T10115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  441.175819][T10115] Call Trace:
[  441.179085][T10115]  <TASK>
[  441.181999][T10115]  dump_stack_lvl+0x241/0x360
[  441.186674][T10115]  ? __pfx_dump_stack_lvl+0x10/0x10
[  441.191870][T10115]  ? __pfx__printk+0x10/0x10
[  441.196449][T10115]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[  441.202845][T10115]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[  441.209330][T10115]  warn_alloc+0x278/0x410
[  441.213645][T10115]  ? __pfx_warn_alloc+0x10/0x10
[  441.218483][T10115]  ? translate_table+0x196/0x21f0
[  441.223491][T10115]  ? __get_vm_area_node+0x23d/0x270
[  441.228678][T10115]  __vmalloc_node_range_noprof+0x69f/0x1460
[  441.234555][T10115]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  441.240272][T10115]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  441.246588][T10115]  ? rcu_is_watching+0x15/0xb0
[  441.251340][T10115]  ? trace_kmalloc+0x1f/0xd0
[  441.255918][T10115]  ? __kmalloc_node_noprof+0x247/0x440
[  441.261361][T10115]  ? __kvmalloc_node_noprof+0x72/0x190
[  441.266810][T10115]  __kvmalloc_node_noprof+0x142/0x190
[  441.272166][T10115]  ? translate_table+0x196/0x21f0
[  441.277173][T10115]  translate_table+0x196/0x21f0
[  441.282007][T10115]  ? lock_acquire+0x264/0x550
[  441.286680][T10115]  ? __pfx___might_resched+0x10/0x10
[  441.291965][T10115]  ? __might_fault+0xaa/0x120
[  441.296625][T10115]  ? __pfx_translate_table+0x10/0x10
[  441.301925][T10115]  ? __might_fault+0xaa/0x120
[  441.306592][T10115]  ? __might_fault+0xc6/0x120
[  441.311253][T10115]  ? _copy_from_user+0xa6/0xe0
[  441.316004][T10115]  ? copy_from_sockptr_offset+0x6b/0xb0
[  441.321533][T10115]  do_arpt_set_ctl+0x101c/0x1650
[  441.326460][T10115]  ? __pfx_do_arpt_set_ctl+0x10/0x10
[  441.331725][T10115]  ? __pfx_bpf_trace_run2+0x10/0x10
[  441.336910][T10115]  ? nf_setsockopt+0x240/0x2c0
[  441.341747][T10115]  ? __pfx_lock_release+0x10/0x10
[  441.346770][T10115]  ? __mutex_lock+0x2ef/0xd70
[  441.351438][T10115]  ? __mutex_unlock_slowpath+0x21d/0x750
[  441.357059][T10115]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  441.362419][T10115]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  441.368385][T10115]  ? irqentry_exit+0x63/0x90
[  441.372963][T10115]  ? module_put+0x13a/0x2d0
[  441.377451][T10115]  nf_setsockopt+0x295/0x2c0
[  441.382032][T10115]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  441.387913][T10115]  do_sock_setsockopt+0x3af/0x720
[  441.392929][T10115]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  441.398457][T10115]  ? __fget_files+0x29/0x470
[  441.403030][T10115]  ? __fget_files+0x3f6/0x470
[  441.407695][T10115]  __sys_setsockopt+0x1ae/0x250
[  441.412531][T10115]  __x64_sys_setsockopt+0xb5/0xd0
[  441.417538][T10115]  do_syscall_64+0xf3/0x230
[  441.422030][T10115]  ? clear_bhb_loop+0x35/0x90
[  441.426710][T10115]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  441.432593][T10115] RIP: 0033:0x7f0ef3b779f9
[  441.437011][T10115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  441.456605][T10115] RSP: 002b:00007f0ef48ae048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  441.465003][T10115] RAX: ffffffffffffffda RBX: 00007f0ef3d06130 RCX: 00007f0ef3b779f9
[  441.472959][T10115] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000005
[  441.480916][T10115] RBP: 00007f0ef3be58ee R08: 0000000000000450 R09: 0000000000000000
[  441.488871][T10115] R10: 0000000020000500 R11: 0000000000000246 R12: 0000000000000000
[  441.496828][T10115] R13: 000000000000006e R14: 00007f0ef3d06130 R15: 00007ffc424b83d8
[  441.504796][T10115]  </TASK>
[  441.507994][T10115] Mem-Info:
[  441.511091][T10115] active_anon:245 inactive_anon:6066 isolated_anon:0
[  441.511091][T10115]  active_file:8722 inactive_file:41903 isolated_file:0
[  441.511091][T10115]  unevictable:768 dirty:71 writeback:0
[  441.511091][T10115]  slab_reclaimable:10103 slab_unreclaimable:98870
[  441.511091][T10115]  mapped:32596 shmem:4109 pagetables:707
[  441.511091][T10115]  sec_pagetables:0 bounce:0
[  441.511091][T10115]  kernel_misc_reclaimable:0
[  441.511091][T10115]  free:1313774 free_pcp:6941 free_cma:0
[  441.556237][T10115] Node 0 active_anon:980kB inactive_anon:24264kB active_file:34764kB inactive_file:167612kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:130384kB dirty:284kB writeback:0kB shmem:14900kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11532kB pagetables:2828kB sec_pagetables:0kB all_unreclaimable? no
[  441.588746][T10115] Node 1 active_anon:0kB inactive_anon:0kB active_file:124kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  441.618892][T10115] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  441.646266][T10115] lowmem_reserve[]: 0 2563 2565 0 0
[  441.651534][T10115] Node 0 DMA32 free:1287572kB boost:0kB min:35036kB low:43792kB high:52548kB reserved_highatomic:0KB active_anon:976kB inactive_anon:24220kB active_file:33252kB inactive_file:167548kB unevictable:1536kB writepending:284kB present:3129332kB managed:2653292kB mlocked:0kB bounce:0kB free_pcp:25664kB local_pcp:25072kB free_cma:0kB
[  441.682311][T10115] lowmem_reserve[]: 0 0 1 0 0
[  441.687027][T10115] Node 0 Normal free:8kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:4kB inactive_anon:44kB active_file:1512kB inactive_file:64kB unevictable:0kB writepending:0kB present:1048576kB managed:1640kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  441.714244][T10115] lowmem_reserve[]: 0 0 0 0 0
[  441.718954][T10115] Node 1 Normal free:3952156kB boost:0kB min:54844kB low:68552kB high:82260kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:124kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194304kB managed:4109120kB mlocked:0kB bounce:0kB free_pcp:2056kB local_pcp:2056kB free_cma:0kB
[  441.748415][T10115] lowmem_reserve[]: 0 0 0 0 0
[  441.753104][T10115] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  441.765834][T10115] Node 0 DMA32: 2*4kB (E) 562*8kB (UME) 425*16kB (UME) 273*32kB (UME) 416*64kB (UME) 63*128kB (UM) 52*256kB (UME) 92*512kB (UME) 47*1024kB (UME) 27*2048kB (UME) 261*4096kB (UM) = 1287624kB
[  441.784476][T10115] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[  441.796296][T10115] Node 1 Normal: 9*4kB (UM) 7*8kB (UM) 6*16kB (UM) 7*32kB (UM) 4*64kB (UM) 5*128kB (UM) 3*256kB (UM) 5*512kB (UM) 5*1024kB (UM) 5*2048kB (UM) 960*4096kB (M) = 3952156kB
[  441.813193][T10115] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  441.822746][T10115] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  441.832260][T10115] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  441.841824][T10115] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  441.851121][T10115] 54734 total pagecache pages
[  441.855794][T10115] 0 pages in swap cache
[  441.860069][T10115] Free swap  = 124692kB
[  441.864217][T10115] Total swap = 124996kB
[  441.868375][T10115] 2097051 pages RAM
[  441.872155][T10115] 0 pages HighMem/MovableOnly
[  441.876839][T10115] 402198 pages reserved
[  441.880966][T10115] 0 pages cma reserved
[  442.034125][ T1262] ieee802154 phy0 wpan0: encryption failed: -22
[  442.045638][ T1262] ieee802154 phy1 wpan1: encryption failed: -22
[  443.385586][ T2934] hsr_slave_0: left promiscuous mode
[  443.422132][ T2934] hsr_slave_1: left promiscuous mode
[  443.428671][ T2934] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  443.445617][ T2934] batman_adv: batadv0: Removing interface: batadv_slave_0
[  443.476421][ T2934] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  443.495618][ T2934] batman_adv: batadv0: Removing interface: batadv_slave_1
[  443.512974][T10138] netlink: 'syz.1.1209': attribute type 1 has an invalid length.
[  443.552736][T10138] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1209'.
[  443.583874][ T2934] veth1_macvtap: left promiscuous mode
[  443.601292][ T2934] veth0_macvtap: left promiscuous mode
[  443.624293][ T2934] veth1_vlan: left promiscuous mode
[  443.650260][ T2934] veth0_vlan: left promiscuous mode
[  444.115215][   T54] Bluetooth: hci3: command tx timeout
[  444.121024][ T5237] Bluetooth: hci5: command tx timeout
[  444.587317][ T2934] team0 (unregistering): Port device team_slave_1 removed
[  444.641264][ T2934] team0 (unregistering): Port device team_slave_0 removed
[  445.198257][T10080] chnl_net:caif_netlink_parms(): no params data found
[  445.462992][T10149] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  445.479275][T10149] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  445.545626][T10148] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1213'.
[  446.027481][ T7255] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  447.907821][ T5237] Bluetooth: hci5: command tx timeout
[  447.913278][ T5237] Bluetooth: hci3: command tx timeout
[  448.059477][ T7255] usb 4-1: config 0 has an invalid interface number: 117 but max is 0
[  448.093218][ T7255] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  448.099758][T10090] chnl_net:caif_netlink_parms(): no params data found
[  448.137536][ T7255] usb 4-1: config 0 has no interface number 0
[  448.152244][ T7255] usb 4-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  448.172520][ T7255] usb 4-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  448.198387][T10080] bridge0: port 1(bridge_slave_0) entered blocking state
[  448.225948][T10080] bridge0: port 1(bridge_slave_0) entered disabled state
[  448.228237][ T7255] usb 4-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0
[  448.261177][ T7255] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  448.265750][T10080] bridge_slave_0: entered allmulticast mode
[  448.282486][ T7255] usb 4-1: Product: syz
[  448.294605][ T7255] usb 4-1: Manufacturer: syz
[  448.314082][ T7255] usb 4-1: SerialNumber: syz
[  448.327103][T10080] bridge_slave_0: entered promiscuous mode
[  448.342839][ T7255] usb 4-1: config 0 descriptor??
[  448.363570][T10080] bridge0: port 2(bridge_slave_1) entered blocking state
[  448.371684][T10080] bridge0: port 2(bridge_slave_1) entered disabled state
[  448.382988][T10080] bridge_slave_1: entered allmulticast mode
[  448.392963][T10080] bridge_slave_1: entered promiscuous mode
[  448.621466][ T7255] usbtouchscreen 4-1:0.117: probe with driver usbtouchscreen failed with error -71
[  448.656660][ T7255] usb 4-1: USB disconnect, device number 26
[  448.764901][T10080] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  449.059072][T10080] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  449.388266][T10186] netlink: 'syz.3.1222': attribute type 1 has an invalid length.
[  449.418622][T10186] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1222'.
[  449.476224][T10090] bridge0: port 1(bridge_slave_0) entered blocking state
[  449.495714][T10090] bridge0: port 1(bridge_slave_0) entered disabled state
[  449.515805][T10090] bridge_slave_0: entered allmulticast mode
[  449.525905][T10090] bridge_slave_0: entered promiscuous mode
[  449.552739][T10080] team0: Port device team_slave_0 added
[  449.574023][T10080] team0: Port device team_slave_1 added
[  449.644072][T10090] bridge0: port 2(bridge_slave_1) entered blocking state
[  449.656816][T10090] bridge0: port 2(bridge_slave_1) entered disabled state
[  449.671794][T10090] bridge_slave_1: entered allmulticast mode
[  449.680526][T10090] bridge_slave_1: entered promiscuous mode
[  449.898170][ T2934] bond0: (slave netdevsim0): Releasing backup interface
[  450.288243][T10188] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1224'.
[  450.298352][T10080] batman_adv: batadv0: Adding interface: batadv_slave_0
[  450.306222][T10080] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  450.357003][T10080] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  451.645229][T10196] warn_alloc: 2 callbacks suppressed
[  451.645250][T10196] syz.0.1225: vmalloc error: size 536870912, failed to allocated page array size 1048576, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[  451.668773][T10196] CPU: 0 UID: 0 PID: 10196 Comm: syz.0.1225 Not tainted 6.11.0-rc1-syzkaller-00334-ga5dbd76a8942 #0
[  451.679552][T10196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  451.689616][T10196] Call Trace:
[  451.692891][T10196]  <TASK>
[  451.695811][T10196]  dump_stack_lvl+0x241/0x360
[  451.700483][T10196]  ? __pfx_dump_stack_lvl+0x10/0x10
[  451.705669][T10196]  ? __pfx__printk+0x10/0x10
[  451.710245][T10196]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[  451.716641][T10196]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[  451.723299][T10196]  warn_alloc+0x278/0x410
[  451.727616][T10196]  ? __pfx_warn_alloc+0x10/0x10
[  451.732451][T10196]  ? translate_table+0x196/0x21f0
[  451.737456][T10196]  ? __get_vm_area_node+0x23d/0x270
[  451.742640][T10196]  __vmalloc_node_range_noprof+0x69f/0x1460
[  451.748603][T10196]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  451.754318][T10196]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  451.760629][T10196]  ? rcu_is_watching+0x15/0xb0
[  451.765407][T10196]  ? trace_kmalloc+0x1f/0xd0
[  451.769983][T10196]  ? __kmalloc_node_noprof+0x247/0x440
[  451.775423][T10196]  ? __kvmalloc_node_noprof+0x72/0x190
[  451.780870][T10196]  __kvmalloc_node_noprof+0x142/0x190
[  451.786233][T10196]  ? translate_table+0x196/0x21f0
[  451.791239][T10196]  translate_table+0x196/0x21f0
[  451.796088][T10196]  ? __pfx___might_resched+0x10/0x10
[  451.801362][T10196]  ? __might_fault+0xaa/0x120
[  451.806022][T10196]  ? __pfx_translate_table+0x10/0x10
[  451.811314][T10196]  ? __might_fault+0xaa/0x120
[  451.815989][T10196]  ? __might_fault+0xc6/0x120
[  451.820661][T10196]  ? _copy_from_user+0xa6/0xe0
[  451.825432][T10196]  ? copy_from_sockptr_offset+0x6b/0xb0
[  451.831498][T10196]  do_arpt_set_ctl+0x101c/0x1650
[  451.836456][T10196]  ? __pfx_do_arpt_set_ctl+0x10/0x10
[  451.841727][T10196]  ? __pfx_bpf_trace_run2+0x10/0x10
[  451.847003][T10196]  ? nf_setsockopt+0x240/0x2c0
[  451.851759][T10196]  ? __pfx_lock_release+0x10/0x10
[  451.856776][T10196]  ? __mutex_lock+0x2ef/0xd70
[  451.861460][T10196]  ? __mutex_unlock_slowpath+0x21d/0x750
[  451.867101][T10196]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  451.872469][T10196]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  451.878451][T10196]  ? lockdep_hardirqs_on+0x99/0x150
[  451.883648][T10196]  ? module_put+0x13a/0x2d0
[  451.888150][T10196]  nf_setsockopt+0x295/0x2c0
[  451.892738][T10196]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  451.898631][T10196]  do_sock_setsockopt+0x3af/0x720
[  451.903649][T10196]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  451.909182][T10196]  ? __fget_files+0x29/0x470
[  451.913755][T10196]  ? __fget_files+0x3f6/0x470
[  451.918425][T10196]  __sys_setsockopt+0x1ae/0x250
[  451.923269][T10196]  __x64_sys_setsockopt+0xb5/0xd0
[  451.928281][T10196]  do_syscall_64+0xf3/0x230
[  451.932769][T10196]  ? clear_bhb_loop+0x35/0x90
[  451.937429][T10196]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  451.943314][T10196] RIP: 0033:0x7fd76b5779f9
[  451.947716][T10196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  451.967304][T10196] RSP: 002b:00007fd76c312048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  451.975702][T10196] RAX: ffffffffffffffda RBX: 00007fd76b706130 RCX: 00007fd76b5779f9
[  451.983652][T10196] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000005
[  451.991604][T10196] RBP: 00007fd76b5e58ee R08: 0000000000000450 R09: 0000000000000000
[  451.999584][T10196] R10: 0000000020000500 R11: 0000000000000246 R12: 0000000000000000
[  452.007541][T10196] R13: 000000000000006e R14: 00007fd76b706130 R15: 00007ffca3403ea8
[  452.015504][T10196]  </TASK>
[  452.018931][T10196] Mem-Info:
[  452.022032][T10196] active_anon:245 inactive_anon:6029 isolated_anon:0
[  452.022032][T10196]  active_file:8726 inactive_file:41903 isolated_file:0
[  452.022032][T10196]  unevictable:768 dirty:60 writeback:0
[  452.022032][T10196]  slab_reclaimable:10061 slab_unreclaimable:98519
[  452.022032][T10196]  mapped:32068 shmem:4109 pagetables:724
[  452.022032][T10196]  sec_pagetables:0 bounce:0
[  452.022032][T10196]  kernel_misc_reclaimable:0
[  452.022032][T10196]  free:1332142 free_pcp:6419 free_cma:0
[  452.067113][T10196] Node 0 active_anon:980kB inactive_anon:24116kB active_file:34780kB inactive_file:167612kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:128272kB dirty:240kB writeback:0kB shmem:14900kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11600kB pagetables:2896kB sec_pagetables:0kB all_unreclaimable? no
[  452.099631][T10196] Node 1 active_anon:0kB inactive_anon:0kB active_file:124kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  452.129786][T10196] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  452.156836][T10196] lowmem_reserve[]: 0 2563 2565 0 0
[  452.162486][T10196] Node 0 DMA32 free:1361296kB boost:0kB min:35036kB low:43792kB high:52548kB reserved_highatomic:0KB active_anon:976kB inactive_anon:24072kB active_file:33268kB inactive_file:167548kB unevictable:1536kB writepending:236kB present:3129332kB managed:2653292kB mlocked:0kB bounce:0kB free_pcp:23356kB local_pcp:22288kB free_cma:0kB
[  452.193197][T10196] lowmem_reserve[]: 0 0 1 0 0
[  452.197921][T10196] Node 0 Normal free:8kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:4kB inactive_anon:44kB active_file:1512kB inactive_file:64kB unevictable:0kB writepending:4kB present:1048576kB managed:1640kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  452.225147][T10196] lowmem_reserve[]: 0 0 0 0 0
[  452.229865][T10196] Node 1 Normal free:3951904kB boost:0kB min:54844kB low:68552kB high:82260kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:124kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194304kB managed:4109120kB mlocked:0kB bounce:0kB free_pcp:2296kB local_pcp:2052kB free_cma:0kB
[  452.259164][T10196] lowmem_reserve[]: 0 0 0 0 0
[  452.263853][T10196] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  452.276454][T10196] Node 0 DMA32: 5*4kB (UME) 2*8kB (E) 205*16kB (ME) 406*32kB (UME) 414*64kB (ME) 103*128kB (UME) 75*256kB (UME) 92*512kB (UME) 42*1024kB (UME) 28*2048kB (UME) 278*4096kB (UM) = 1361332kB
[  452.294991][T10196] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[  452.306801][T10196] Node 1 Normal: 2*4kB (M) 3*8kB (M) 2*16kB (UM) 3*32kB (UM) 4*64kB (UM) 5*128kB (UM) 3*256kB (UM) 5*512kB (UM) 5*1024kB (UM) 5*2048kB (UM) 960*4096kB (M) = 3951904kB
[  452.323521][T10196] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  452.333059][T10196] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  452.342352][T10196] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  452.351890][T10196] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  452.361164][T10196] 54740 total pagecache pages
[  452.365851][T10196] 0 pages in swap cache
[  452.369986][T10196] Free swap  = 124692kB
[  452.374127][T10196] Total swap = 124996kB
[  452.378276][T10196] 2097051 pages RAM
[  452.382059][T10196] 0 pages HighMem/MovableOnly
[  452.386727][T10196] 402198 pages reserved
[  452.390854][T10196] 0 pages cma reserved
[  452.688869][T10080] batman_adv: batadv0: Adding interface: batadv_slave_1
[  452.725664][T10080] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  452.795638][T10080] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  452.852510][T10090] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  452.904638][T10090] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  453.245780][    T8] usb 2-1: new high-speed USB device number 33 using dummy_hcd
[  453.275896][ T6994] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  453.293028][T10090] team0: Port device team_slave_0 added
[  453.400090][T10080] hsr_slave_0: entered promiscuous mode
[  453.408314][T10080] hsr_slave_1: entered promiscuous mode
[  453.418188][T10080] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  453.435909][T10080] Cannot create hsr debugfs directory
[  453.446355][    T8] usb 2-1: New USB device found, idVendor=0fc5, idProduct=1227, bcdDevice=da.8e
[  453.446982][T10207] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  453.455402][    T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  453.455428][    T8] usb 2-1: Product: syz
[  453.455442][    T8] usb 2-1: Manufacturer: syz
[  453.455457][    T8] usb 2-1: SerialNumber: syz
[  453.495814][ T6994] usb 4-1: Using ep0 maxpacket: 32
[  453.501321][ T2934] dummy0: left allmulticast mode
[  453.508415][ T6994] usb 4-1: config index 0 descriptor too short (expected 35577, got 27)
[  453.511321][ T2934] dummy0: left promiscuous mode
[  453.526095][T10207] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  453.534706][ T6994] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  453.546056][ T2934] bridge0: port 3(dummy0) entered disabled state
[  453.554500][ T6994] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  453.555272][    T8] usb 2-1: config 0 descriptor??
[  453.576390][ T2934] bridge_slave_1: left allmulticast mode
[  453.582061][ T2934] bridge_slave_1: left promiscuous mode
[  453.598301][    T8] usbsevseg 2-1:0.0: USB 7 Segment device now attached
[  453.601480][ T6994] usb 4-1: config 1 has 0 interfaces, different from the descriptor's value: 92
[  453.606010][ T2934] bridge0: port 2(bridge_slave_1) entered disabled state
[  453.635118][ T6994] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  453.651318][ T2934] bridge_slave_0: left allmulticast mode
[  453.657080][ T6994] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  453.665776][ T2934] bridge_slave_0: left promiscuous mode
[  453.671524][ T2934] bridge0: port 1(bridge_slave_0) entered disabled state
[  453.778653][ T1171] usb 4-1: USB disconnect, device number 27
[  454.003664][ T6994] usb 2-1: USB disconnect, device number 33
[  454.013322][ T6994] usbsevseg 2-1:0.0: USB 7 Segment now disconnected
[  454.111394][ T2934] bond0 (unregistering): (slave geneve0): Releasing backup interface
[  454.191982][ T2934] bond0 (unregistering): (slave bridge0): Releasing backup interface
[  454.699568][ T2934] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  454.711368][ T2934] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  454.763734][ T2934] bond0 (unregistering): (slave macvlan2): Releasing backup interface
[  454.789262][ T2934] team0: left promiscuous mode
[  454.821692][ T2934] team_slave_0: left promiscuous mode
[  454.839267][ T2934] team_slave_1: left promiscuous mode
[  454.858311][ T2934] bond0 (unregistering): Released all slaves
[  454.877952][T10222] netlink: 'syz.1.1232': attribute type 1 has an invalid length.
[  454.892597][T10090] team0: Port device team_slave_1 added
[  454.905307][T10222] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1232'.
[  454.990125][ T2934] IPVS: stopping master sync thread 6287 ...
[  455.080201][T10090] batman_adv: batadv0: Adding interface: batadv_slave_0
[  455.103165][T10090] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  455.160075][T10090] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  455.221465][T10090] batman_adv: batadv0: Adding interface: batadv_slave_1
[  455.228950][T10090] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  455.265762][T10090] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  455.462008][T10228] bridge: RTM_NEWNEIGH with invalid ether address
[  457.729164][T10090] hsr_slave_0: entered promiscuous mode
[  457.786123][T10090] hsr_slave_1: entered promiscuous mode
[  457.817558][T10090] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  458.114746][T10090] Cannot create hsr debugfs directory
[  458.380859][T10243] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  458.389871][T10243] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  462.059185][ T2934] hsr_slave_0: left promiscuous mode
[  462.065291][ T2934] hsr_slave_1: left promiscuous mode
[  463.663919][T10262] netlink: 'syz.1.1245': attribute type 1 has an invalid length.
[  463.717625][T10262] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1245'.
[  464.503906][ T2934] team0 (unregistering): Port device team_slave_1 removed
[  464.580502][ T2934] team0 (unregistering): Port device team_slave_0 removed
[  465.155003][ T2934] lo (unregistering): left allmulticast mode
[  465.210632][T10272] bridge: RTM_NEWNEIGH with invalid ether address
[  467.032216][T10280] warn_alloc: 2 callbacks suppressed
[  467.032238][T10280] syz.3.1249: vmalloc error: size 536870912, failed to allocated page array size 1048576, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz3,mems_allowed=0-1
[  467.055774][T10280] CPU: 0 UID: 0 PID: 10280 Comm: syz.3.1249 Not tainted 6.11.0-rc1-syzkaller-00334-ga5dbd76a8942 #0
[  467.066574][T10280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  467.076649][T10280] Call Trace:
[  467.079937][T10280]  <TASK>
[  467.082873][T10280]  dump_stack_lvl+0x241/0x360
[  467.087578][T10280]  ? __pfx_dump_stack_lvl+0x10/0x10
[  467.092814][T10280]  ? __pfx__printk+0x10/0x10
[  467.097440][T10280]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[  467.103871][T10280]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[  467.110397][T10280]  warn_alloc+0x278/0x410
[  467.114756][T10280]  ? __pfx_warn_alloc+0x10/0x10
[  467.119627][T10280]  ? translate_table+0x196/0x21f0
[  467.124666][T10280]  ? __get_vm_area_node+0x23d/0x270
[  467.129867][T10280]  __vmalloc_node_range_noprof+0x69f/0x1460
[  467.135756][T10280]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  467.141484][T10280]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  467.147806][T10280]  ? rcu_is_watching+0x15/0xb0
[  467.152567][T10280]  ? trace_kmalloc+0x1f/0xd0
[  467.157159][T10280]  ? __kmalloc_node_noprof+0x247/0x440
[  467.162611][T10280]  ? __kvmalloc_node_noprof+0x72/0x190
[  467.168065][T10280]  __kvmalloc_node_noprof+0x142/0x190
[  467.173435][T10280]  ? translate_table+0x196/0x21f0
[  467.178454][T10280]  translate_table+0x196/0x21f0
[  467.183309][T10280]  ? __pfx___might_resched+0x10/0x10
[  467.188588][T10280]  ? __might_fault+0xaa/0x120
[  467.193257][T10280]  ? __pfx_translate_table+0x10/0x10
[  467.198538][T10280]  ? __check_object_size+0x1d1/0x900
[  467.203815][T10280]  ? __might_fault+0xaa/0x120
[  467.208483][T10280]  ? __might_fault+0xc6/0x120
[  467.213151][T10280]  ? _copy_from_user+0xa6/0xe0
[  467.217911][T10280]  ? copy_from_sockptr_offset+0x6b/0xb0
[  467.223452][T10280]  do_arpt_set_ctl+0x101c/0x1650
[  467.228389][T10280]  ? __pfx_do_arpt_set_ctl+0x10/0x10
[  467.233670][T10280]  ? __pfx_bpf_trace_run2+0x10/0x10
[  467.238861][T10280]  ? nf_setsockopt+0x240/0x2c0
[  467.243620][T10280]  ? __pfx_lock_release+0x10/0x10
[  467.248645][T10280]  ? __mutex_lock+0x2ef/0xd70
[  467.253323][T10280]  ? __mutex_unlock_slowpath+0x21d/0x750
[  467.258957][T10280]  ? irqentry_exit+0x63/0x90
[  467.263547][T10280]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  467.269531][T10280]  ? nf_setsockopt+0x3c/0x2c0
[  467.274200][T10280]  ? nf_setsockopt+0x2e/0x2c0
[  467.278872][T10280]  ? module_put+0x13a/0x2d0
[  467.283368][T10280]  nf_setsockopt+0x295/0x2c0
[  467.287959][T10280]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  467.293846][T10280]  do_sock_setsockopt+0x3af/0x720
[  467.298866][T10280]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  467.304401][T10280]  ? __fget_files+0x29/0x470
[  467.308981][T10280]  ? __fget_files+0x3f6/0x470
[  467.313655][T10280]  __sys_setsockopt+0x1ae/0x250
[  467.318501][T10280]  __x64_sys_setsockopt+0xb5/0xd0
[  467.323517][T10280]  do_syscall_64+0xf3/0x230
[  467.328015][T10280]  ? clear_bhb_loop+0x35/0x90
[  467.332684][T10280]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  467.338573][T10280] RIP: 0033:0x7f6f529779f9
[  467.342980][T10280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  467.362579][T10280] RSP: 002b:00007f6f537c6048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  467.371015][T10280] RAX: ffffffffffffffda RBX: 00007f6f52b06130 RCX: 00007f6f529779f9
[  467.378977][T10280] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000007
[  467.386944][T10280] RBP: 00007f6f529e58ee R08: 0000000000000450 R09: 0000000000000000
[  467.394912][T10280] R10: 0000000020000500 R11: 0000000000000246 R12: 0000000000000000
[  467.402880][T10280] R13: 000000000000006e R14: 00007f6f52b06130 R15: 00007ffc3ab27be8
[  467.410874][T10280]  </TASK>
[  467.414633][T10280] Mem-Info:
[  467.417829][T10280] active_anon:245 inactive_anon:6052 isolated_anon:0
[  467.417829][T10280]  active_file:8732 inactive_file:41903 isolated_file:0
[  467.417829][T10280]  unevictable:768 dirty:77 writeback:0
[  467.417829][T10280]  slab_reclaimable:10045 slab_unreclaimable:97858
[  467.417829][T10280]  mapped:32125 shmem:4114 pagetables:703
[  467.417829][T10280]  sec_pagetables:0 bounce:0
[  467.417829][T10280]  kernel_misc_reclaimable:0
[  467.417829][T10280]  free:1338102 free_pcp:1165 free_cma:0
[  467.463097][T10280] Node 0 active_anon:980kB inactive_anon:26908kB active_file:34804kB inactive_file:167612kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:131256kB dirty:308kB writeback:0kB shmem:17720kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11536kB pagetables:2812kB sec_pagetables:0kB all_unreclaimable? no
[  467.495797][T10280] Node 1 active_anon:0kB inactive_anon:0kB active_file:124kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:44kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  467.526203][T10280] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  467.553416][T10280] lowmem_reserve[]: 0 2563 2565 0 0
[  467.558843][T10280] Node 0 DMA32 free:1369036kB boost:0kB min:35036kB low:43792kB high:52548kB reserved_highatomic:0KB active_anon:976kB inactive_anon:32864kB active_file:33292kB inactive_file:167548kB unevictable:1536kB writepending:308kB present:3129332kB managed:2653292kB mlocked:0kB bounce:0kB free_pcp:9748kB local_pcp:1896kB free_cma:0kB
[  467.589541][T10280] lowmem_reserve[]: 0 0 1 0 0
[  467.594285][T10280] Node 0 Normal free:8kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:4kB inactive_anon:44kB active_file:1512kB inactive_file:64kB unevictable:0kB writepending:0kB present:1048576kB managed:1640kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  467.602816][T10283] IPVS: sync thread started: state = MASTER, mcast_ifn = lo, syncid = 0, id = 0
[  467.622771][T10280] lowmem_reserve[]: 0 0 0 0 0
[  467.639235][T10280] Node 1 Normal free:3952148kB boost:0kB min:54844kB low:68552kB high:82260kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:124kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194304kB managed:4109120kB mlocked:0kB bounce:0kB free_pcp:2052kB local_pcp:0kB free_cma:0kB
[  467.669146][T10280] lowmem_reserve[]: 0 0 0 0 0
[  467.674385][T10280] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  467.687731][T10280] Node 0 DMA32: 3*4kB (E) 4*8kB (UME) 18*16kB (ME) 464*32kB (UME) 414*64kB (ME) 200*128kB (UME) 75*256kB (UME) 83*512kB (UME) 42*1024kB (UME) 28*2048kB (UME) 278*4096kB (UM) = 1368012kB
[  467.706599][T10280] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[  467.719019][T10280] Node 1 Normal: 7*4kB (UM) 7*8kB (UM) 6*16kB (UM) 7*32kB (UM) 4*64kB (UM) 5*128kB (UM) 3*256kB (UM) 5*512kB (UM) 5*1024kB (UM) 5*2048kB (UM) 960*4096kB (M) = 3952148kB
[  467.736165][T10280] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  467.738153][T10282] netlink: 'syz.1.1250': attribute type 1 has an invalid length.
[  467.746318][T10280] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  467.763515][T10280] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  467.773629][T10280] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  467.783373][T10280] 57594 total pagecache pages
[  467.788138][T10280] 0 pages in swap cache
[  467.792306][T10280] Free swap  = 124692kB
[  467.796547][T10280] Total swap = 124996kB
[  467.800715][T10280] 2097051 pages RAM
[  467.804526][T10280] 0 pages HighMem/MovableOnly
[  467.809270][T10280] 402198 pages reserved
[  467.813463][T10280] 0 pages cma reserved
[  468.548030][T10288] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  468.556861][T10288] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  472.742408][T10080] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  472.807086][T10080] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  472.838536][T10080] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  472.894443][T10080] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  473.077461][ T5277] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[  473.276065][T10080] 8021q: adding VLAN 0 to HW filter on device bond0
[  473.294307][ T5277] usb 2-1: config 0 has an invalid interface number: 117 but max is 0
[  473.317593][ T5277] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  473.357763][ T5277] usb 2-1: config 0 has no interface number 0
[  473.398299][ T5277] usb 2-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  473.426207][ T5277] usb 2-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  473.461708][T10080] 8021q: adding VLAN 0 to HW filter on device team0
[  473.464055][ T5277] usb 2-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0
[  473.514055][ T5277] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  473.558306][ T5277] usb 2-1: Product: syz
[  473.562529][ T5277] usb 2-1: Manufacturer: syz
[  473.572662][ T7255] bridge0: port 1(bridge_slave_0) entered blocking state
[  473.575610][ T5277] usb 2-1: SerialNumber: syz
[  473.579850][ T7255] bridge0: port 1(bridge_slave_0) entered forwarding state
[  473.586903][ T5277] usb 2-1: config 0 descriptor??
[  473.649992][T10090] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  473.695793][T10090] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  473.744155][T10090] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  473.782456][ T7254] bridge0: port 2(bridge_slave_1) entered blocking state
[  473.789645][ T7254] bridge0: port 2(bridge_slave_1) entered forwarding state
[  473.825881][ T5277] usbtouchscreen 2-1:0.117: probe with driver usbtouchscreen failed with error -71
[  473.848092][T10090] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  473.857743][ T5277] usb 2-1: USB disconnect, device number 34
[  474.367623][T10090] 8021q: adding VLAN 0 to HW filter on device bond0
[  474.469690][T10090] 8021q: adding VLAN 0 to HW filter on device team0
[  474.515994][ T1171] bridge0: port 1(bridge_slave_0) entered blocking state
[  474.523124][ T1171] bridge0: port 1(bridge_slave_0) entered forwarding state
[  474.557820][ T1171] bridge0: port 2(bridge_slave_1) entered blocking state
[  474.565042][ T1171] bridge0: port 2(bridge_slave_1) entered forwarding state
[  474.677917][T10080] 8021q: adding VLAN 0 to HW filter on device batadv0
[  475.383388][T10090] 8021q: adding VLAN 0 to HW filter on device batadv0
[  475.682180][T10090] veth0_vlan: entered promiscuous mode
[  475.773280][T10090] veth1_vlan: entered promiscuous mode
[  476.053007][T10090] veth0_macvtap: entered promiscuous mode
[  476.113147][T10090] veth1_macvtap: entered promiscuous mode
[  476.138539][T10080] veth0_vlan: entered promiscuous mode
[  476.181646][T10080] veth1_vlan: entered promiscuous mode
[  476.214419][T10090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  476.237355][T10090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  476.247930][T10090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  476.258621][T10090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  476.272550][T10090] batman_adv: batadv0: Interface activated: batadv_slave_0
[  476.313580][T10090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  476.337213][T10090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  476.357473][T10090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  476.368613][T10090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  476.380490][T10090] batman_adv: batadv0: Interface activated: batadv_slave_1
[  476.410341][T10080] veth0_macvtap: entered promiscuous mode
[  476.431479][T10090] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  476.457737][T10090] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  476.472871][T10090] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  476.488977][T10090] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  476.518268][T10080] veth1_macvtap: entered promiscuous mode
[  476.593580][T10080] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  476.622342][T10080] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  476.632604][T10080] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  476.655625][T10080] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  476.675130][T10080] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  476.690084][T10080] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  476.782086][T10080] batman_adv: batadv0: Interface activated: batadv_slave_0
[  477.080715][T10080] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  477.244875][T10080] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  477.255037][T10080] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  477.276953][T10080] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  477.287014][T10080] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  477.335736][T10080] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  477.360722][T10080] batman_adv: batadv0: Interface activated: batadv_slave_1
[  477.452423][T10080] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  477.472571][T10080] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  477.485003][T10080] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  477.501330][T10080] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  477.605355][ T7136] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  477.638787][ T7136] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  477.651504][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  477.675162][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  478.262323][ T7136] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  478.272344][ T7136] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  478.373731][ T7136] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  478.396697][ T7136] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  479.114985][T10367] netlink: 'syz.0.1270': attribute type 1 has an invalid length.
[  480.074875][   T35] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  480.132165][T10374] netlink: 'syz.0.1272': attribute type 10 has an invalid length.
[  480.189373][T10374] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  480.341226][   T35] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  480.582990][   T35] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  480.770715][   T35] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  481.152135][   T54] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  481.162763][   T54] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  481.171235][   T54] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  481.180138][   T54] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  481.207034][   T54] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  481.214690][   T54] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  481.267617][T10399] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  481.337843][   T35] bridge_slave_1: left allmulticast mode
[  481.346187][   T35] bridge_slave_1: left promiscuous mode
[  481.352268][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[  481.352305][T10399] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  481.401577][   T35] bridge_slave_0: left allmulticast mode
[  481.471690][   T35] bridge_slave_0: left promiscuous mode
[  481.486457][T10403] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1279'.
[  481.499365][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[  482.782719][T10410] netlink: 'syz.1.1282': attribute type 1 has an invalid length.
[  482.855554][T10416] netlink: 'syz.2.1283': attribute type 1 has an invalid length.
[  483.305770][ T5237] Bluetooth: hci3: command tx timeout
[  483.671363][   T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  483.699532][   T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  483.731563][   T35] bond0 (unregistering): Released all slaves
[  484.377939][T10435] netlink: 'syz.0.1288': attribute type 10 has an invalid length.
[  484.911457][   T35] hsr_slave_0: left promiscuous mode
[  484.941162][   T35] hsr_slave_1: left promiscuous mode
[  484.963464][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  484.990281][   T35] batman_adv: batadv0: Removing interface: batadv_slave_0
[  485.022012][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  485.049455][   T35] batman_adv: batadv0: Removing interface: batadv_slave_1
[  485.166303][   T35] veth1_macvtap: left promiscuous mode
[  485.189576][   T35] veth0_macvtap: left promiscuous mode
[  485.225928][   T35] veth1_vlan: left promiscuous mode
[  485.231542][   T35] veth0_vlan: left promiscuous mode
[  485.385904][ T5237] Bluetooth: hci3: command tx timeout
[  487.119343][   T35] team0 (unregistering): Port device team_slave_1 removed
[  487.300873][   T35] team0 (unregistering): Port device team_slave_0 removed
[  487.482033][ T5237] Bluetooth: hci3: command tx timeout
[  488.084542][T10395] chnl_net:caif_netlink_parms(): no params data found
[  488.467783][T10482] netlink: 'syz.3.1301': attribute type 10 has an invalid length.
[  488.523235][T10395] bridge0: port 1(bridge_slave_0) entered blocking state
[  488.569026][T10395] bridge0: port 1(bridge_slave_0) entered disabled state
[  488.588536][T10395] bridge_slave_0: entered allmulticast mode
[  488.606765][T10395] bridge_slave_0: entered promiscuous mode
[  488.621349][T10395] bridge0: port 2(bridge_slave_1) entered blocking state
[  488.629153][T10395] bridge0: port 2(bridge_slave_1) entered disabled state
[  488.657979][T10395] bridge_slave_1: entered allmulticast mode
[  488.681224][T10395] bridge_slave_1: entered promiscuous mode
[  488.739708][T10491] netlink: 304 bytes leftover after parsing attributes in process `syz.3.1304'.
[  488.783803][T10488] netlink: 'syz.2.1302': attribute type 10 has an invalid length.
[  488.819584][T10488] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  488.865460][T10395] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  488.907709][T10395] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  489.038648][T10395] team0: Port device team_slave_0 added
[  489.063512][T10395] team0: Port device team_slave_1 added
[  489.197698][T10395] batman_adv: batadv0: Adding interface: batadv_slave_0
[  489.237513][T10395] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  489.283895][T10395] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  489.299146][T10395] batman_adv: batadv0: Adding interface: batadv_slave_1
[  489.306946][T10395] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  489.338419][T10395] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  489.443730][T10395] hsr_slave_0: entered promiscuous mode
[  489.498426][T10395] hsr_slave_1: entered promiscuous mode
[  489.527134][T10395] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  489.545646][ T5237] Bluetooth: hci3: command tx timeout
[  489.583693][T10395] Cannot create hsr debugfs directory
[  490.095647][ T6996] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  490.397549][ T6996] usb 3-1: config 0 has an invalid interface number: 117 but max is 0
[  491.061695][ T6996] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  491.075889][ T6996] usb 3-1: config 0 has no interface number 0
[  491.082034][ T6996] usb 3-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  491.092018][ T6996] usb 3-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  491.122175][ T6996] usb 3-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0
[  491.148832][ T6996] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  491.170232][ T6996] usb 3-1: Product: syz
[  491.178297][ T6996] usb 3-1: Manufacturer: syz
[  491.182933][ T6996] usb 3-1: SerialNumber: syz
[  491.307306][ T6996] usb 3-1: config 0 descriptor??
[  491.317482][T10523] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1312'.
[  491.598053][T10531] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  491.631285][T10530] netlink: 'syz.3.1314': attribute type 10 has an invalid length.
[  491.698707][T10395] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  491.735857][ T6996] usb 3-1: USB disconnect, device number 3
[  491.781212][T10395] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  491.812812][T10395] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  491.847694][T10395] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  492.133064][T10395] 8021q: adding VLAN 0 to HW filter on device bond0
[  492.186847][ T6993] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[  492.230931][T10395] 8021q: adding VLAN 0 to HW filter on device team0
[  492.295459][ T6996] bridge0: port 1(bridge_slave_0) entered blocking state
[  492.302681][ T6996] bridge0: port 1(bridge_slave_0) entered forwarding state
[  492.372111][ T6996] bridge0: port 2(bridge_slave_1) entered blocking state
[  492.379246][ T6996] bridge0: port 2(bridge_slave_1) entered forwarding state
[  492.430103][ T6993] usb 2-1: config 0 has an invalid interface number: 117 but max is 0
[  492.465735][ T6993] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  492.499025][ T6993] usb 2-1: config 0 has no interface number 0
[  492.523219][ T6993] usb 2-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  492.564806][T10543] netlink: 'syz.2.1318': attribute type 10 has an invalid length.
[  492.587928][ T6993] usb 2-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  492.645351][ T6993] usb 2-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0
[  492.695622][ T6993] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  492.724501][ T6993] usb 2-1: Product: syz
[  492.750579][ T6993] usb 2-1: Manufacturer: syz
[  492.765735][ T6993] usb 2-1: SerialNumber: syz
[  492.797519][ T6993] usb 2-1: config 0 descriptor??
[  492.983160][T10395] 8021q: adding VLAN 0 to HW filter on device batadv0
[  493.038853][ T6993] usbtouchscreen 2-1:0.117: probe with driver usbtouchscreen failed with error -32
[  493.128767][ T6993] usb 2-1: USB disconnect, device number 35
[  494.207930][T10566] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1324'.
[  494.270974][T10395] veth0_vlan: entered promiscuous mode
[  494.321491][T10395] veth1_vlan: entered promiscuous mode
[  495.379304][T10395] veth0_macvtap: entered promiscuous mode
[  495.393963][T10395] veth1_macvtap: entered promiscuous mode
[  495.424903][T10395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  495.580198][T10395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  495.590594][T10395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  495.601536][T10395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  495.615670][T10395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  495.709186][T10581] netlink: 'syz.0.1327': attribute type 1 has an invalid length.
[  496.335772][T10395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  496.413598][T10395] batman_adv: batadv0: Interface activated: batadv_slave_0
[  496.482636][T10576] netlink: 'syz.1.1326': attribute type 10 has an invalid length.
[  496.519253][T10576] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  496.647127][T10395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  496.695765][T10395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  496.775731][T10395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  496.836914][T10395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  496.864949][T10395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  496.994519][T10395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  497.025295][T10395] batman_adv: batadv0: Interface activated: batadv_slave_1
[  497.068399][T10590] netlink: 'syz.1.1330': attribute type 10 has an invalid length.
[  498.207824][T10395] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  498.224662][T10395] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  498.236273][T10395] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  498.245176][T10395] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  498.510518][ T7163] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  498.537896][ T7163] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  498.622835][ T7165] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  498.647531][ T7165] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  499.201699][T10617] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1336'.
[  499.470527][T10623] fuse: Unknown parameter 'use00000000000000000000'
[  500.104977][   T35] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  500.239466][T10628] netlink: 'syz.2.1340': attribute type 10 has an invalid length.
[  500.372753][   T35] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  500.700208][   T35] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  500.868062][   T35] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  500.968308][T10641] netlink: 'syz.3.1345': attribute type 10 has an invalid length.
[  501.241703][T10645] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1347'.
[  501.283890][   T35] bridge_slave_1: left allmulticast mode
[  501.301452][   T35] bridge_slave_1: left promiscuous mode
[  501.325089][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[  501.359751][   T35] bridge_slave_0: left allmulticast mode
[  501.373283][   T54] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  501.384894][   T54] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  501.393586][   T54] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  501.405197][   T54] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  501.413234][   T54] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  501.422020][   T54] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  501.466378][   T35] bridge_slave_0: left promiscuous mode
[  501.514186][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[  501.788858][ T1262] ieee802154 phy0 wpan0: encryption failed: -22
[  501.795227][ T1262] ieee802154 phy1 wpan1: encryption failed: -22
[  502.972632][T10668] misc userio: Invalid payload size
[  503.029570][T10668] misc userio: Invalid payload size
[  503.211082][   T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  503.249353][   T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  503.295432][   T35] bond0 (unregistering): Released all slaves
[  503.549762][   T54] Bluetooth: hci3: command tx timeout
[  503.924873][T10676] netlink: 'syz.1.1354': attribute type 10 has an invalid length.
[  504.085726][ T6993] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  504.346815][ T6993] usb 4-1: Using ep0 maxpacket: 16
[  504.379458][T10696] netlink: 'syz.1.1359': attribute type 10 has an invalid length.
[  504.397680][ T6993] usb 4-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  504.422870][   T35] hsr_slave_0: left promiscuous mode
[  504.457072][   T35] hsr_slave_1: left promiscuous mode
[  504.464575][ T6993] usb 4-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  504.480270][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  504.500237][   T35] batman_adv: batadv0: Removing interface: batadv_slave_0
[  504.519781][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  504.540060][ T6993] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  504.541158][   T35] batman_adv: batadv0: Removing interface: batadv_slave_1
[  504.555432][ T5277] usb 3-1: new full-speed USB device number 4 using dummy_hcd
[  504.582403][ T6993] usb 4-1: Product: syz
[  504.594985][ T6993] usb 4-1: Manufacturer: syz
[  504.630419][ T6993] usb 4-1: SerialNumber: syz
[  504.633154][   T35] veth1_macvtap: left promiscuous mode
[  504.658983][ T6993] usb 4-1: config 0 descriptor??
[  504.666261][   T35] veth0_macvtap: left promiscuous mode
[  504.671951][   T35] veth1_vlan: left promiscuous mode
[  504.695752][   T35] veth0_vlan: left promiscuous mode
[  504.761799][ T5277] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  504.787999][ T5277] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  504.814669][ T5277] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  504.846800][ T5277] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40
[  504.865615][ T5277] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  504.873904][ T5277] usb 3-1: SerialNumber: syz
[  504.895874][ T5327] usb 4-1: USB disconnect, device number 28
[  504.924356][ T5277] cdc_ether 3-1:1.0: probe with driver cdc_ether failed with error -22
[  504.948418][ T5277] usb-storage 3-1:1.0: USB Mass Storage device detected
[  504.971657][ T5277] usb-storage 3-1:1.0: Quirks match for vid 0525 pid a4a5: 10000
[  505.635144][   T54] Bluetooth: hci3: command tx timeout
[  506.652050][   T35] team0 (unregistering): Port device team_slave_1 removed
[  506.709106][   T35] team0 (unregistering): Port device team_slave_0 removed
[  507.715670][ T5237] Bluetooth: hci3: command tx timeout
[  507.799667][T10715] bridge0: entered promiscuous mode
[  507.835839][T10715] vlan2: entered promiscuous mode
[  507.845092][T10711] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1363'.
[  507.914800][T10725] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  507.927399][T10725] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  507.938020][ T1171] usb 3-1: USB disconnect, device number 4
[  508.479110][T10646] chnl_net:caif_netlink_parms(): no params data found
[  508.599085][T10741] netlink: 'syz.2.1371': attribute type 10 has an invalid length.
[  508.605694][ T6993] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[  508.815685][ T6993] usb 2-1: Using ep0 maxpacket: 16
[  508.823579][ T6993] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  508.844324][ T6993] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  508.881013][ T6993] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  508.905684][ T6993] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  508.912072][T10753] netlink: 'syz.2.1372': attribute type 10 has an invalid length.
[  508.922890][ T6993] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  508.936049][ T6993] usb 2-1: config 0 descriptor??
[  508.990001][ T5237] Bluetooth: hci0: command 0x0406 tx timeout
[  509.119669][T10646] bridge0: port 1(bridge_slave_0) entered blocking state
[  509.127220][T10646] bridge0: port 1(bridge_slave_0) entered disabled state
[  509.136140][T10646] bridge_slave_0: entered allmulticast mode
[  509.148835][T10646] bridge_slave_0: entered promiscuous mode
[  509.163251][T10646] bridge0: port 2(bridge_slave_1) entered blocking state
[  509.175023][T10646] bridge0: port 2(bridge_slave_1) entered disabled state
[  509.182704][T10646] bridge_slave_1: entered allmulticast mode
[  509.198315][T10646] bridge_slave_1: entered promiscuous mode
[  509.295910][T10646] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  509.321871][T10646] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  509.346477][ T6993] microsoft 0003:045E:07DA.0003: report is too long
[  509.358500][ T6993] microsoft 0003:045E:07DA.0003: item 0 4 0 8 parsing failed
[  509.370364][ T6993] microsoft 0003:045E:07DA.0003: parse failed
[  509.385334][ T6993] microsoft 0003:045E:07DA.0003: probe with driver microsoft failed with error -22
[  509.412178][T10646] team0: Port device team_slave_0 added
[  509.433623][T10646] team0: Port device team_slave_1 added
[  509.474742][T10646] batman_adv: batadv0: Adding interface: batadv_slave_0
[  509.482059][T10646] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  509.507938][    C1] vkms_vblank_simulate: vblank timer overrun
[  509.524291][T10646] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  509.552174][T10646] batman_adv: batadv0: Adding interface: batadv_slave_1
[  509.563395][ T6993] usb 2-1: USB disconnect, device number 36
[  509.575761][ T7255] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  509.585150][T10646] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  509.612749][T10646] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  509.709914][T10646] hsr_slave_0: entered promiscuous mode
[  509.724924][T10646] hsr_slave_1: entered promiscuous mode
[  509.740344][T10646] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  509.759756][T10646] Cannot create hsr debugfs directory
[  509.790963][ T7255] usb 4-1: Using ep0 maxpacket: 16
[  509.796291][ T5237] Bluetooth: hci3: command tx timeout
[  509.804606][ T7255] usb 4-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  509.830238][ T7255] usb 4-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  509.851094][ T7255] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  509.869718][ T7255] usb 4-1: Product: syz
[  509.878817][ T7255] usb 4-1: Manufacturer: syz
[  509.889842][ T7255] usb 4-1: SerialNumber: syz
[  509.904072][ T7255] usb 4-1: config 0 descriptor??
[  510.465206][ T5277] usb 4-1: USB disconnect, device number 29
[  511.302440][T10774] batadv_slave_0: mtu less than device minimum
[  511.605734][ T6993] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[  511.722377][T10646] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  511.767228][T10646] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  511.805952][ T6993] usb 2-1: Using ep0 maxpacket: 8
[  511.823453][ T6993] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024
[  511.841412][T10646] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  511.857598][ T6993] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  511.896999][ T6993] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  511.921534][ T6993] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  511.951953][T10646] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  511.982125][ T6993] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  512.026488][ T6993] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  512.216934][T10789] netlink: 'syz.3.1384': attribute type 10 has an invalid length.
[  512.263289][ T6993] usb 2-1: usb_control_msg returned -32
[  512.272185][ T6993] usbtmc 2-1:16.0: can't read capabilities
[  512.375867][T10646] 8021q: adding VLAN 0 to HW filter on device bond0
[  512.436012][T10646] 8021q: adding VLAN 0 to HW filter on device team0
[  512.460093][ T5327] bridge0: port 1(bridge_slave_0) entered blocking state
[  512.467292][ T5327] bridge0: port 1(bridge_slave_0) entered forwarding state
[  512.508747][ T5327] bridge0: port 2(bridge_slave_1) entered blocking state
[  512.515943][ T5327] bridge0: port 2(bridge_slave_1) entered forwarding state
[  513.043423][T10646] 8021q: adding VLAN 0 to HW filter on device batadv0
[  619.145553][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  619.152560][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P35/2:b..l P10811/3:b..l P10795/1:b..l
[  619.163378][    C1] rcu: 	(detected by 1, t=10502 jiffies, g=50165, q=550 ncpus=2)
[  619.171110][    C1] task:syz.0.1386      state:R  running task     stack:23584 pid:10795 tgid:10792 ppid:8431   flags:0x00004002
[  619.184237][    C1] Call Trace:
[  619.187529][    C1]  <TASK>
[  619.190474][    C1]  __schedule+0x17ae/0x4a10
[  619.195000][    C1]  ? page_ext_get+0x1d6/0x2a0
[  619.199707][    C1]  ? post_alloc_hook+0x206/0x230
[  619.204655][    C1]  ? __pfx___schedule+0x10/0x10
[  619.209525][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  619.215525][    C1]  ? preempt_schedule_irq+0xf0/0x1c0
[  619.220830][    C1]  preempt_schedule_irq+0xfb/0x1c0
[  619.226039][    C1]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  619.231785][    C1]  irqentry_exit+0x5e/0x90
[  619.236212][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  619.242199][    C1] RIP: 0010:lock_acquire+0x264/0x550
[  619.247496][    C1] Code: 2b 00 74 08 4c 89 f7 e8 2a cd 87 00 f6 44 24 61 02 0f 85 85 01 00 00 41 f7 c7 00 02 00 00 74 01 fb 48 c7 44 24 40 0e 36 e0 45 <4b> c7 44 25 00 00 00 00 00 43 c7 44 25 09 00 00 00 00 43 c7 44 25
[  619.267126][    C1] RSP: 0018:ffffc90004216fa0 EFLAGS: 00000206
[  619.273301][    C1] RAX: 0000000000000001 RBX: 1ffff92000842e00 RCX: 64551465c3258100
[  619.281386][    C1] RDX: dffffc0000000000 RSI: ffffffff8beae6e0 RDI: ffffffff8c3f8980
[  619.289391][    C1] RBP: ffffc900042170f0 R08: ffffffff934ee807 R09: 1ffffffff269dd00
[  619.297552][    C1] R10: dffffc0000000000 R11: fffffbfff269dd01 R12: 1ffff92000842dfc
[  619.305630][    C1] R13: dffffc0000000000 R14: ffffc90004217000 R15: 0000000000000246
[  619.313639][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  619.318687][    C1]  ? alloc_pages_mpol_noprof+0x417/0x680
[  619.324337][    C1]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  619.330331][    C1]  ? get_mem_cgroup_from_mm+0x38/0x2a0
[  619.335828][    C1]  get_mem_cgroup_from_mm+0x55/0x2a0
[  619.341118][    C1]  ? get_mem_cgroup_from_mm+0x38/0x2a0
[  619.346590][    C1]  __mem_cgroup_charge+0x16/0x80
[  619.351538][    C1]  shmem_alloc_and_add_folio+0x857/0x14e0
[  619.357287][    C1]  ? __pfx_filemap_get_entry+0x10/0x10
[  619.362760][    C1]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  619.368929][    C1]  ? shmem_allowable_huge_orders+0x2d0/0x310
[  619.374924][    C1]  shmem_get_folio_gfp+0x8dc/0x2370
[  619.380130][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[  619.385360][    C1]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  619.391015][    C1]  shmem_fault+0x252/0x6f0
[  619.395450][    C1]  ? __pfx_shmem_fault+0x10/0x10
[  619.400398][    C1]  ? __pfx_lock_release+0x10/0x10
[  619.405430][    C1]  ? pte_offset_map_nolock+0x137/0x1f0
[  619.410912][    C1]  __do_fault+0x135/0x460
[  619.415253][    C1]  ? handle_pte_fault+0x21e2/0x6eb0
[  619.420465][    C1]  handle_pte_fault+0x3b24/0x6eb0
[  619.425513][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  619.430557][    C1]  ? __pfx_handle_pte_fault+0x10/0x10
[  619.435960][    C1]  ? follow_page_pte+0x29a/0x1ee0
[  619.440995][    C1]  ? follow_page_pte+0x83f/0x1ee0
[  619.446032][    C1]  ? __pfx_lock_release+0x10/0x10
[  619.451069][    C1]  ? count_memcg_event_mm+0x3c2/0x420
[  619.456447][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[  619.461659][    C1]  ? folio_mark_accessed+0x6f6/0x11b0
[  619.467053][    C1]  handle_mm_fault+0xf70/0x1880
[  619.471935][    C1]  ? __pfx_handle_mm_fault+0x10/0x10
[  619.477244][    C1]  ? __pfx_find_vma+0x10/0x10
[  619.481932][    C1]  ? vma_is_secretmem+0xd/0x50
[  619.486709][    C1]  ? check_vma_flags+0x500/0x5a0
[  619.491662][    C1]  __get_user_pages+0x6ec/0x16a0
[  619.496628][    C1]  ? __pfx___get_user_pages+0x10/0x10
[  619.502021][    C1]  populate_vma_page_range+0x264/0x330
[  619.507495][    C1]  ? __pfx_populate_vma_page_range+0x10/0x10
[  619.513483][    C1]  ? userfaultfd_unmap_complete+0x30c/0x360
[  619.519394][    C1]  __mm_populate+0x27a/0x460
[  619.524000][    C1]  ? __pfx___mm_populate+0x10/0x10
[  619.529131][    C1]  vm_mmap_pgoff+0x2c3/0x3d0
[  619.533741][    C1]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  619.538864][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  619.545215][    C1]  ? ksys_mmap_pgoff+0xdf/0x720
[  619.550071][    C1]  ? syscall_user_dispatch+0x4e/0x90
[  619.555359][    C1]  ? __x64_sys_mmap+0x7f/0x140
[  619.560143][    C1]  do_syscall_64+0xf3/0x230
[  619.564674][    C1]  ? clear_bhb_loop+0x35/0x90
[  619.569361][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  619.575273][    C1] RIP: 0033:0x7fd76b5779f9
[  619.579695][    C1] RSP: 002b:00007fd76c354048 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  619.588121][    C1] RAX: ffffffffffffffda RBX: 00007fd76b705f80 RCX: 00007fd76b5779f9
[  619.596618][    C1] RDX: b635773f06ebbeee RSI: 0000000000b36000 RDI: 0000000020000000
[  619.604611][    C1] RBP: 00007fd76b5e58ee R08: ffffffffffffffff R09: 0000000000000000
[  619.612620][    C1] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[  619.620607][    C1] R13: 000000000000000b R14: 00007fd76b705f80 R15: 00007ffca3403ea8
[  619.628608][    C1]  </TASK>
[  619.631633][    C1] task:modprobe        state:R  running task     stack:25360 pid:10811 tgid:10811 ppid:1286   flags:0x00000000
[  619.643386][    C1] Call Trace:
[  619.646674][    C1]  <TASK>
[  619.649620][    C1]  __schedule+0x17ae/0x4a10
[  619.654169][    C1]  ? __pfx___schedule+0x10/0x10
[  619.659054][    C1]  ? preempt_schedule+0xe1/0xf0
[  619.663915][    C1]  preempt_schedule_common+0x84/0xd0
[  619.669579][    C1]  preempt_schedule+0xe1/0xf0
[  619.674282][    C1]  ? __pfx_preempt_schedule+0x10/0x10
[  619.679698][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  619.685609][    C1]  preempt_schedule_thunk+0x1a/0x30
[  619.690829][    C1]  _raw_spin_unlock+0x3e/0x50
[  619.695515][    C1]  filemap_map_pages+0x1707/0x1e70
[  619.700666][    C1]  ? filemap_map_pages+0x24f/0x1e70
[  619.705892][    C1]  ? __pfx_filemap_map_pages+0x10/0x10
[  619.711365][    C1]  ? handle_pte_fault+0x331/0x6eb0
[  619.716493][    C1]  ? __pfx_lock_release+0x10/0x10
[  619.721532][    C1]  ? pte_offset_map_nolock+0x137/0x1f0
[  619.727012][    C1]  ? handle_pte_fault+0x21e2/0x6eb0
[  619.732218][    C1]  ? __pfx_filemap_map_pages+0x10/0x10
[  619.737689][    C1]  ? handle_pte_fault+0x21e2/0x6eb0
[  619.742898][    C1]  handle_pte_fault+0x39aa/0x6eb0
[  619.747950][    C1]  ? mark_lock+0x9a/0x350
[  619.752296][    C1]  ? __pfx_handle_pte_fault+0x10/0x10
[  619.757699][    C1]  ? reacquire_held_locks+0x3eb/0x690
[  619.763078][    C1]  ? lock_vma_under_rcu+0x2f9/0x6e0
[  619.768299][    C1]  ? __pfx_reacquire_held_locks+0x10/0x10
[  619.774032][    C1]  handle_mm_fault+0xf70/0x1880
[  619.778932][    C1]  ? __pfx_handle_mm_fault+0x10/0x10
[  619.784238][    C1]  ? lock_vma_under_rcu+0x592/0x6e0
[  619.789466][    C1]  ? exc_page_fault+0x113/0x8c0
[  619.794334][    C1]  exc_page_fault+0x459/0x8c0
[  619.799038][    C1]  asm_exc_page_fault+0x26/0x30
[  619.803901][    C1] RIP: 0033:0x7f0376e8a636
[  619.808330][    C1] RSP: 002b:00007fff14cdb9d0 EFLAGS: 00010246
[  619.814410][    C1] RAX: 0000000000000000 RBX: 00007f0376e90d8a RCX: 0000000000000020
[  619.822389][    C1] RDX: 00007f0376e9d4b8 RSI: 00007fff14cdba38 RDI: 00007fff14cdbb50
[  619.830367][    C1] RBP: 0000000000000005 R08: 00007f0376e793c0 R09: 0000002300000007
[  619.838608][    C1] R10: 00007f0376e8ac40 R11: 000000006fff000a R12: 00007fff14cdbb50
[  619.846596][    C1] R13: 00007fff14cdcfb4 R14: 00007fff14cdcfb9 R15: 00007f0376e79858
[  619.854625][    C1]  </TASK>
[  619.857742][    C1] task:kworker/u8:2    state:R  running task     stack:21136 pid:35    tgid:35    ppid:2      flags:0x00004000
[  619.869498][    C1] Workqueue: ipv6_addrconf addrconf_dad_work
[  619.875504][    C1] Call Trace:
[  619.878784][    C1]  <TASK>
[  619.881724][    C1]  __schedule+0x17ae/0x4a10
[  619.886252][    C1]  ? br_dev_queue_push_xmit+0x870/0x8d0
[  619.891824][    C1]  ? br_flood+0x40d/0x660
[  619.896254][    C1]  ? __pfx___schedule+0x10/0x10
[  619.901121][    C1]  ? br_dev_xmit+0x21d/0x1b10
[  619.905806][    C1]  ? br_dev_xmit+0x128f/0x1b10
[  619.910596][    C1]  ? preempt_schedule+0xe1/0xf0
[  619.915454][    C1]  preempt_schedule_common+0x84/0xd0
[  619.920749][    C1]  preempt_schedule+0xe1/0xf0
[  619.925435][    C1]  ? __pfx_preempt_schedule+0x10/0x10
[  619.930815][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  619.936807][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  619.943144][    C1]  preempt_schedule_thunk+0x1a/0x30
[  619.948349][    C1]  ? mark_lock+0x9a/0x350
[  619.952685][    C1]  __local_bh_enable_ip+0x179/0x200
[  619.957894][    C1]  ? dev_hard_start_xmit+0x773/0x7e0
[  619.963272][    C1]  ? __dev_queue_xmit+0x2da/0x3e90
[  619.968391][    C1]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  619.974125][    C1]  ? __dev_queue_xmit+0x2da/0x3e90
[  619.979246][    C1]  __dev_queue_xmit+0x1763/0x3e90
[  619.984291][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  619.990282][    C1]  ? __dev_queue_xmit+0x2da/0x3e90
[  619.995401][    C1]  ? __pfx___dev_queue_xmit+0x10/0x10
[  620.000779][    C1]  ? neigh_resolve_output+0x450/0x740
[  620.006159][    C1]  ? read_seqbegin+0x157/0x2b0
[  620.010928][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  620.016136][    C1]  ? read_seqbegin+0x208/0x2b0
[  620.020909][    C1]  ? __pfx_read_seqbegin+0x10/0x10
[  620.026032][    C1]  ? neigh_resolve_output+0x2e5/0x740
[  620.031411][    C1]  ? eth_header+0x11c/0x1f0
[  620.035919][    C1]  ? __asan_memcpy+0x40/0x70
[  620.040513][    C1]  ? eth_header+0x11c/0x1f0
[  620.045028][    C1]  ? __pfx_eth_header+0x10/0x10
[  620.049878][    C1]  ? neigh_resolve_output+0x61f/0x740
[  620.055273][    C1]  ip6_finish_output2+0xffa/0x1680
[  620.060404][    C1]  ? ip6_finish_output2+0x712/0x1680
[  620.065697][    C1]  ? nf_hook+0x9e/0x450
[  620.069883][    C1]  ? __pfx_ip6_finish_output2+0x10/0x10
[  620.075446][    C1]  ? ip6_mtu+0x81/0x3f0
[  620.079619][    C1]  ip6_finish_output+0x41e/0x810
[  620.084573][    C1]  ndisc_send_skb+0xab2/0x1380
[  620.089344][    C1]  ? ndisc_send_skb+0x574/0x1380
[  620.094287][    C1]  ? __alloc_skb+0x271/0x440
[  620.098888][    C1]  ? __pfx_ndisc_send_skb+0x10/0x10
[  620.104088][    C1]  ? ipv6_get_ifaddr+0x107/0x770
[  620.109032][    C1]  ? __pfx_dst_output+0x10/0x10
[  620.113887][    C1]  ? skb_set_owner_w+0x238/0x3e0
[  620.118842][    C1]  ? ndisc_send_rs+0x533/0x6b0
[  620.123618][    C1]  addrconf_dad_completed+0x76c/0xcd0
[  620.129010][    C1]  ? __pfx_addrconf_dad_completed+0x10/0x10
[  620.134920][    C1]  ? addrconf_dad_work+0x58a/0x16f0
[  620.140131][    C1]  addrconf_dad_work+0xdc2/0x16f0
[  620.145174][    C1]  ? __pfx_addrconf_dad_work+0x10/0x10
[  620.150656][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  620.157022][    C1]  ? process_scheduled_works+0x945/0x1830
[  620.162772][    C1]  process_scheduled_works+0xa2c/0x1830
[  620.168371][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  620.174373][    C1]  ? assign_work+0x364/0x3d0
[  620.178982][    C1]  worker_thread+0x86d/0xd40
[  620.183600][    C1]  ? __kthread_parkme+0x169/0x1d0
[  620.188640][    C1]  ? __pfx_worker_thread+0x10/0x10
[  620.193765][    C1]  kthread+0x2f0/0x390
[  620.197846][    C1]  ? __pfx_worker_thread+0x10/0x10
[  620.202964][    C1]  ? __pfx_kthread+0x10/0x10
[  620.207566][    C1]  ret_from_fork+0x4b/0x80
[  620.211993][    C1]  ? __pfx_kthread+0x10/0x10
[  620.216595][    C1]  ret_from_fork_asm+0x1a/0x30
[  620.221384][    C1]  </TASK>
[  620.224407][    C1] rcu: rcu_preempt kthread starved for 10608 jiffies! g50165 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[  620.235606][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  620.245576][    C1] rcu: RCU grace-period kthread stack dump:
[  620.251463][    C1] task:rcu_preempt     state:R  running task     stack:25816 pid:17    tgid:17    ppid:2      flags:0x00004000
[  620.263213][    C1] Call Trace:
[  620.266501][    C1]  <TASK>
[  620.269440][    C1]  __schedule+0x17ae/0x4a10
[  620.273985][    C1]  ? __pfx___schedule+0x10/0x10
[  620.278850][    C1]  ? __pfx_lock_release+0x10/0x10
[  620.283884][    C1]  ? __asan_memset+0x23/0x50
[  620.288483][    C1]  ? __pfx_lockdep_init_map_type+0x10/0x10
[  620.294299][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  620.300636][    C1]  ? schedule+0x90/0x320
[  620.304890][    C1]  schedule+0x14b/0x320
[  620.309061][    C1]  schedule_timeout+0x1be/0x310
[  620.313934][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[  620.319323][    C1]  ? __pfx_process_timeout+0x10/0x10
[  620.324631][    C1]  ? prepare_to_swait_event+0x32e/0x350
[  620.330205][    C1]  rcu_gp_fqs_loop+0x2df/0x1330
[  620.335072][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  620.340286][    C1]  ? rcu_gp_init+0x1256/0x1630
[  620.345064][    C1]  ? __pfx_rcu_gp_init+0x10/0x10
[  620.350008][    C1]  ? __pfx_rcu_implicit_dynticks_qs+0x10/0x10
[  620.356086][    C1]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  620.361388][    C1]  ? rcu_gp_cleanup+0xf67/0x1150
[  620.366337][    C1]  rcu_gp_kthread+0xa7/0x3b0
[  620.370935][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  620.376135][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  620.382038][    C1]  ? __kthread_parkme+0x169/0x1d0
[  620.387073][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  620.392288][    C1]  kthread+0x2f0/0x390
[  620.396369][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  620.401575][    C1]  ? __pfx_kthread+0x10/0x10
[  620.406180][    C1]  ret_from_fork+0x4b/0x80
[  620.410608][    C1]  ? __pfx_kthread+0x10/0x10
[  620.415208][    C1]  ret_from_fork_asm+0x1a/0x30
[  620.419997][    C1]  </TASK>
[  620.423020][    C1] rcu: Stack dump where RCU GP kthread last ran:
[  620.429348][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.11.0-rc1-syzkaller-00334-ga5dbd76a8942 #0
[  620.439682][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  620.449737][    C1] RIP: 0010:acpi_safe_halt+0x21/0x30
[  620.455031][    C1] Code: 90 90 90 90 90 90 90 90 90 65 48 8b 04 25 00 d7 03 00 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d e5 cb 9b 00 f3 0f 1e fa fb f4 <fa> c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90
[  620.474647][    C1] RSP: 0018:ffffc900001a7d08 EFLAGS: 00000246
[  620.480811][    C1] RAX: ffff888017af0000 RBX: ffff88801bab2064 RCX: 00000000029ca889
[  620.488787][    C1] RDX: 0000000000000001 RSI: ffff88801bab2000 RDI: ffff88801bab2064
[  620.496761][    C1] RBP: 000000000003a678 R08: ffff8880b9337c7b R09: 1ffff11017266f8f
[  620.504737][    C1] R10: dffffc0000000000 R11: ffffffff8bad6c90 R12: ffff88801d3d0000
[  620.512716][    C1] R13: 0000000000000000 R14: 0000000000000001 R15: ffffffff8eeca1e0
[  620.520697][    C1] FS:  0000000000000000(0000) GS:ffff8880b9300000(0000) knlGS:0000000000000000
[  620.529629][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  620.536216][    C1] CR2: 000000110c3e3cac CR3: 00000000163b8000 CR4: 00000000003526f0
[  620.544195][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  620.552170][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  620.560148][    C1] Call Trace:
[  620.563520][    C1]  <IRQ>
[  620.566366][    C1]  ? rcu_check_gp_kthread_starvation+0x278/0x310
[  620.572713][    C1]  ? print_other_cpu_stall+0x1470/0x15a0
[  620.578370][    C1]  ? __pfx_print_other_cpu_stall+0x10/0x10
[  620.584199][    C1]  ? __pfx_lock_release+0x10/0x10
[  620.589256][    C1]  ? kvm_check_and_clear_guest_paused+0x6a/0xd0
[  620.595518][    C1]  ? rcu_sched_clock_irq+0xa2c/0x10d0
[  620.600915][    C1]  ? __pfx_rcu_sched_clock_irq+0x10/0x10
[  620.606562][    C1]  ? hrtimer_run_queues+0x16c/0x460
[  620.611783][    C1]  ? update_process_times+0x1ce/0x230
[  620.617167][    C1]  ? tick_nohz_handler+0x37c/0x500
[  620.622288][    C1]  ? __pfx_tick_nohz_handler+0x10/0x10
[  620.627764][    C1]  ? __hrtimer_run_queues+0x551/0xd50
[  620.633142][    C1]  ? ktime_get_update_offsets_now+0x3c/0x250
[  620.639147][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  620.644878][    C1]  ? ktime_get_update_offsets_now+0x22d/0x250
[  620.650960][    C1]  ? hrtimer_interrupt+0x396/0x990
[  620.656101][    C1]  ? __sysvec_apic_timer_interrupt+0x110/0x3f0
[  620.662271][    C1]  ? sysvec_apic_timer_interrupt+0xa1/0xc0
[  620.668090][    C1]  </IRQ>
[  620.671025][    C1]  <TASK>
[  620.673961][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  620.680134][    C1]  ? __pfx_acpi_idle_enter+0x10/0x10
[  620.685430][    C1]  ? acpi_safe_halt+0x21/0x30
[  620.690115][    C1]  acpi_idle_enter+0xe4/0x140
[  620.694802][    C1]  cpuidle_enter_state+0x112/0x480
[  620.699927][    C1]  ? __pfx_menu_select+0x10/0x10
[  620.704881][    C1]  cpuidle_enter+0x5d/0xa0
[  620.709310][    C1]  do_idle+0x375/0x5d0
[  620.713391][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  620.719734][    C1]  ? __pfx_do_idle+0x10/0x10
[  620.724331][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  620.729555][    C1]  cpu_startup_entry+0x42/0x60
[  620.734329][    C1]  start_secondary+0x100/0x100
[  620.739103][    C1]  common_startup_64+0x13e/0x147
[  620.744060][    C1]  </TASK>